Unrated severityNVD Advisory· Published Feb 21, 2008· Updated Jun 16, 2026
CVE-2008-0862
CVE-2008-0862
Description
IBM Lotus Notes 6.0, 6.5, 7.0, and 8.0 signs an unsigned applet when a user forwards an email message to another user, which allows user-assisted remote attackers to bypass Execution Control List (ECL) protection.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
5cpe:2.3:a:ibm:lotus_notes:6.0:*:*:*:*:*:*:*+ 4 more
- cpe:2.3:a:ibm:lotus_notes:6.0:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:lotus_notes:6.5:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:lotus_notes:7.0:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:lotus_notes:8.0:*:*:*:*:*:*:*
- (no CPE)range: 6.0, 6.5, 7.0, and 8.0
Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.