Check Point Reference: | CPAI-2012-300 |
Date Published: | 14 Oct 2012 |
Severity: | Medium |
Last Updated: | Wednesday 12 March, 2025 |
Source: | CVE-2012-2176 |
Protection Provided by: |
Security Gateway |
Who is Vulnerable? | IBM Lotus Quickr 8.2 for Domino |
Vulnerability Description | A stack-based buffer overflow vulnerability has been reported in IBM Lotus Quickr. |
Vulnerability Details | The vulnerability is due to an unbounded string copy within the QuickPlace ActiveX control when setting certain properties. A remote attacker can exploit this issue by enticing a target user to view a specially crafted web page. Successful exploitation could allow an attacker to execute arbitrary code in the security context of the logged on user. |
This protection will detect an block attempts to view a specially crafted web page.
In order for the protection to be activated, update your product to the latest update. For information on how to update , go to SBP-2006-05, Protection tab and select the version of your choice.
SmartView Tracker will log the following entries:
Attack Name: Web Client Enforcement Violation
Attack Information: IBM Lotus Quickr qp2.cab ActiveX Control Stack Buffer Overflow