Security Bulletin: IBM Notes PNG integer overflow (CVE-2013-2977)

Flash (Alert)


Abstract

IBM Notes has an integer overflow vulnerability which may be triggered by viewing a malformed PNG image.

Content


CVE ID: CVE-2013-2977

DESCRIPTION:
IBM Notes has an integer overflow vulnerability which may be triggered by viewing a malformed PNG image.

An integer overflow can occur resulting in allocation of less memory than expected. An attacker can construct specially crafted input that allows complete control of the application, resulting in arbitrary code execution.

Because this can be triggered by simply viewing an email in the preview window, it can be exploited without any interaction required.


CVE ID: CVE-2013-2977
CVSS Base Score: 6.8
CVSS Temporal Score: See http://xforce.iss.net/xforce/xfdb/83967 for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (AV:N/AC:M/Au:N/C:P/I:P/A:P)

AFFECTED PLATFORMS:
IBM Notes 8.5.x, 9.0

REMEDIATION:

Fix:
This issue is being tracked as SPR NPEI96K82Q. The Windows fix is included in Interim Fix 1 for Notes 8.5.3 Fix Pack 4 and Interim Fix 1 for Notes 9.0.

For Linux, the fix is included in 8.5.3 Fix Pack 5 and 9.0.1.

Workaround:
None

Mitigation:
Disabling JavaScript in Notes will make it more difficult to exploit the vulnerability, but does not prevent the vulnerability from being triggered.




REFERENCES:
Complete CVSS Guide
On-line Calculator V2
CVE-2013-2977
http://xforce.iss.net/xforce/xfdb/83967



RELATED INFORMATION:
IBM Secure Engineering Web Portal
IBM Product Security Incident Response Blog


ACKNOWLEDGEMENT
This vulnerability was reported to IBM by Lagarto of the Binamuse VRT, via the iSIGHT Partners GVP Program

Rate this page:

(0 users)Average rating

Add comments

Document information


More support for:

IBM Notes

Software version:

8.5, 8.5.1, 8.5.2, 8.5.3, 9.0

Operating system(s):

Linux, Windows

Reference #:

1635878

Modified date:

2013-05-06

Translate my page

Machine Translation

Content navigation