IBM.Lotus.Expeditor.cai.URI.Handler.Command.Execution
Description
This indicates an attempt to exploit an argument injection vulnerability in IBM Lotus Expeditor.
The vulnerability is due to improper handling of "cai:" URIs and passing the "-launcher" argument to the "rcplauncher.exe" utility.
Affected Products
IBM Lotus Expeditor Client 6.1
Impact
System Compromise
Recommended Actions
Refer to the IBM Technote (FAQ) 1303813:
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |
Version Updates
Date | Version | Detail |
---|---|---|
2020-09-10 | 16.921 | Sig Added |