CVE-2017-1129

MEDIUM

IBM Notes 8.5 and 9.0 - Denial of Service via Malicious Link

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 3 public exploits for CVE-2017-1129. PoCs published by Dhiraj Mishra, including Metasploit module auxiliary/dos/http/ibm_lotus_notes.

AI-analyzed exploit summary This exploit demonstrates a denial of service vulnerability in IBM Notes by causing the client to crash when a user clicks on a malicious link. The PoC uses a JavaScript loop with an invalid operation to trigger the crash.

Description

IBM Notes 8.5 and 9.0 is vulnerable to a denial of service. If a user is persuaded to click on a malicious link, it could cause the Notes client to hang and have to be restarted. IBM X-Force ID: 121370.

Exploits (3)

exploitdb WORKING POC VERIFIED
by Dhiraj Mishra · htmldosmultiple
https://www.exploit-db.com/exploits/42602

This exploit demonstrates a denial of service vulnerability in IBM Notes by causing the client to crash when a user clicks on a malicious link. The PoC uses a JavaScript loop with an invalid operation to trigger the crash.

Classification
Working Poc 90%
Attack Type
Dos
Complexity
Trivial
Reliability
Reliable
Target: IBM Notes (unspecified version)
No auth needed
Prerequisites: User interaction (clicking a malicious link)
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC
by Dhiraj Mishra · rubydosmultiple
https://www.exploit-db.com/exploits/42969

This exploit targets a Denial of Service (DoS) vulnerability in IBM Lotus Notes' native browser by serving a malicious HTML page with JavaScript that causes the client to hang. The exploit leverages a flaw in the `encodeURI` function within a loop to trigger the crash.

Classification
Working Poc 95%
Attack Type
Dos
Complexity
Trivial
Reliability
Reliable
Target: IBM Lotus Notes (versions affected by CVE-2017-1129)
No auth needed
Prerequisites: Victim must visit the malicious URL served by the exploit
devstral-2 · analyzed Feb 16, 2026 Full analysis →
metasploit WORKING POC
by Dhiraj Mishra · rubypoc
https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/dos/http/ibm_lotus_notes.rb

This exploit targets a DoS vulnerability in IBM Lotus Notes by serving a malicious HTML page with JavaScript that triggers an infinite loop, causing the Notes client to hang. The exploit leverages a flaw in the `encodeURI` function handling.

Classification
Working Poc 90%
Attack Type
Dos
Complexity
Trivial
Reliability
Reliable
Target: IBM Lotus Notes (versions affected by CVE-2017-1129)
No auth needed
Prerequisites: Victim must visit the malicious web page using IBM Lotus Notes' native browser
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4
Core References
Exploit, Third Party Advisory, VDB Entry exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/42602/
Patch, Vendor Advisory x_refsource_confirm
http://www.ibm.com/support/docview.wss?uid=swg21999385
VDB Entry, Vendor Advisory x_refsource_misc
https://exchange.xforce.ibmcloud.com/vulnerabilities/121370
Patch, Vendor Advisory x_refsource_confirm
http://www.ibm.com/support/docview.wss?uid=swg22002103

Scores

CVSS v3 6.5
EPSS 0.6850
EPSS Percentile 98.6%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Details

Status published
Products (25)
ibm/expeditor 6.2.1
ibm/expeditor 6.2.2
ibm/expeditor 6.2.3
ibm/inotes 8.5.0.0
ibm/inotes 8.5.1.0
ibm/inotes 8.5.1.1
ibm/inotes 8.5.1.5
ibm/inotes 8.5.2.0
ibm/inotes 8.5.2.1
ibm/inotes 8.5.2.4
... and 15 more
Published Sep 05, 2017
Tracked Since Feb 18, 2026