CVE-2009-3114: CVE-2009-3114

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2009-3114

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

The RSS reader widget in IBM Lotus Notes 8.0 and 8.5 saves items from an RSS feed as local HTML documents, which allows remote attackers to execute arbitrary script in Internet Explorer's Local Machine Zone via a crafted feed, aka SPR RGAU7RDJ9K.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

IBM Lotus Notes RSS阅读器HTML注入漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

IBM Lotus Notes是由IBM开发的集成邮件、日历、即时消息、浏览器和业务协作应用，可用作Lotus Domino服务器应用的桌面客户端。 IBM Lotus Notes提供了一些可由用户选择添加和启用的小工具，其中一个工具是RSS阅读器。这个阅读器下载RSS文件、获取其中的项并本地保存为HTML文件。由于本地保存的文件在Internet Explorer中是以本地Intranet区运行的，因此在解释和显示RSS项时会导致以提升的权限运行其中注入的脚本。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2009-3114

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2009-3114

Please Login to view more intelligence information

http://www.scip.ch/?vuldb.4021x_refsource_MISC
http://www-01.ibm.com/support/docview.wss?uid=swg21403834x_refsource_CONFIRM
http://secunia.com/advisories/36813third-party-advisoryx_refsource_SECUNIA
http://www.securityfocus.com/bid/36305vdb-entryx_refsource_BID
http://www.securityfocus.com/archive/1/506296/100/0/threadedmailing-listx_refsource_BUGTRAQ
https://nvd.nist.gov/vuln/detail/CVE-2009-3114

New Vulnerabilities

Product: n/a

Vendor: n/a

V. Comments for CVE-2009-3114

No comments yet

Support Us — Your donation helps us keep running

I. Basic Information for CVE-2009-3114

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2009-3114

III. Intelligence Information for CVE-2009-3114

New Vulnerabilities

V. Comments for CVE-2009-3114

Leave a comment