SPR# SRAO8U3FUU - Fixed security vulnerability CVE ID: CVE-2012-2174. The issue fixed addressed a security vulnerability in the IBM Lotus Notes URL handler which permits remote code execution. Malicious URLs could allow remote attackers to execute arbitrary code on installations of Lotus Notes. To exploit this vulnerability, the remote attacker must convince a Notes user running on Windows to click on a malicious URL.
↧