Intrusion Prevention

IBM.Lotus.Expeditor.cai.URI.Handler.Command.Execution

Description

This indicates an attempt to exploit an argument injection vulnerability in IBM Lotus Expeditor.
The vulnerability is due to improper handling of "cai:" URIs and passing the "-launcher" argument to the "rcplauncher.exe" utility.

Affected Products

IBM Lotus Expeditor Client 6.1

Impact

System Compromise

Recommended Actions

Refer to the IBM Technote (FAQ) 1303813:
http://www-1.ibm.com/support/docview.wss?rs=899&uid=swg21303813.

CVE References

CVE-2008-1965