High severity7.8NVD Advisory· Published Oct 29, 2007· Updated Jun 16, 2026
CVE-2007-5544
CVE-2007-5544
Description
IBM Lotus Notes before 6.5.6, and 7.x before 7.0.3; and Domino before 6.5.5 FP3, and 7.x before 7.0.2 FP1; uses weak permissions (Everyone:Full Control) for memory mapped files (shared memory) in IPC, which allows local users to obtain sensitive information, or inject Lotus Script or other character sequences into a session.
Affected products
6cpe:2.3:a:ibm:lotus_domino:*:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:a:ibm:lotus_domino:*:*:*:*:*:*:*:*range: <6.5.5
- cpe:2.3:a:ibm:lotus_domino:6.5.5:-:*:*:*:*:*:*
- cpe:2.3:a:ibm:lotus_domino:7.0.2:-:*:*:*:*:*:*
- (no CPE)range: <6.5.5 FP3, 7.x <7.0.2 FP1
cpe:2.3:a:ibm:lotus_notes:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:ibm:lotus_notes:*:*:*:*:*:*:*:*range: <=6.5.5
- (no CPE)range: <6.5.6, 7.x <7.0.3
Patches
Vulnerability mechanics
References
5- secunia.com/advisories/27321nvdBroken LinkPatchVendor Advisory
- www-1.ibm.com/support/docview.wssnvdBroken LinkPatch
- www.securityfocus.com/bid/26146nvdBroken LinkThird Party AdvisoryVDB Entry
- www.symantec.com/content/en/us/enterprise/research/SYMSA-2007-013.txtnvdNot Applicable
- www.vupen.com/english/advisories/2007/3598nvdPermissions Required
News mentions
0No linked articles in our index yet.