IBM Lotus Quickr 8.2 qp2.cab ActiveX Control Buffer Overflow Vulnerability
08 January 2013
Multiple stack-based buffer overflows in a certain ActiveX control in qp2.cab in IBM Lotus Quickr 8.2 before 126.96.36.199-002a for Domino allow remote attackers to execute arbitrary code via a long argument to the (1) Attachment_Times or (2) Import_Times method.
CVSS v2 Base Score: 9.3 (AV:N/AC:M/Au:N/C:C/I:C/A:C)
Bitglass talks about how cloud and mobile and the the largest trends happening in enterprise IT today. There's not a single enterprise out there that's not dealing with these challenges at some level, with the most significant being security and compliance.
A coder that goes by the online handle "Hephaestos" has shared with the world a Python script that, when put on an USB thumb drive, turns the device in an effective kill switch for the computer in which it's plugged in.