The host is installed with IBM Lotus Notes 8.x before 8.5.3 FP2 and is prone to remote code execution vulnerability. A flaw is present in the application, which fails to properly validate user supplied input. Successful exploitation allows attackers to execute arbitrary code via a crafted notes:// URL.