Arbitrary Command Execution via Default ECL in Lotus Notes

Arbitrary Command Execution via Default ECL in Lotus Notes

CVE-2000-0891 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

A default ECL in Lotus Notes before 5.02 allows remote attackers to execute arbitrary commands by attaching a malicious program in an email message that is automatically executed when the user opens the email.

Learn more about our User Device Pen Test.