VYPR
High severity7.8NVD Advisory· Published Oct 29, 2007· Updated Jun 16, 2026

CVE-2007-5544

CVE-2007-5544

Description

IBM Lotus Notes before 6.5.6, and 7.x before 7.0.3; and Domino before 6.5.5 FP3, and 7.x before 7.0.2 FP1; uses weak permissions (Everyone:Full Control) for memory mapped files (shared memory) in IPC, which allows local users to obtain sensitive information, or inject Lotus Script or other character sequences into a session.

Affected products

6
  • IBM/Lotus Domino4 versions
    cpe:2.3:a:ibm:lotus_domino:*:*:*:*:*:*:*:*+ 3 more
    • cpe:2.3:a:ibm:lotus_domino:*:*:*:*:*:*:*:*range: <6.5.5
    • cpe:2.3:a:ibm:lotus_domino:6.5.5:-:*:*:*:*:*:*
    • cpe:2.3:a:ibm:lotus_domino:7.0.2:-:*:*:*:*:*:*
    • (no CPE)range: <6.5.5 FP3, 7.x <7.0.2 FP1
  • IBM/Lotus Notes2 versions
    cpe:2.3:a:ibm:lotus_notes:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:ibm:lotus_notes:*:*:*:*:*:*:*:*range: <=6.5.5
    • (no CPE)range: <6.5.6, 7.x <7.0.3

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.