| VID |
22367 |
| Severity |
30 |
| Port |
80, ... |
| Protocol |
TCP |
| Class |
WWW |
| Detailed Description |
A version of Lotus Domino Server which is older than versions 6.0.6 and 6.5.5 is detected as running on the host. IBM Lotus Notes and Lotus Domino versions prior to 6.0.6 and 6.5.5 are vulnerable to multiple information disclosure vulnerabilities. These security issues are caused due to the Webmail component including a user's password information in HTML hidden fields when the user's entry is viewed in the public address book 'names.nsf' readable by default by all users. These can be exploited to obtain other users' password hashes, password change dates, and other sensitive information by viewing the HTML source. Specifically, users' password hashes are susceptible to pre-computed dictionary attacks, if they are generated without salt, which makes it easier to crack passwords.
* Note: This check solely relied on the banner of the remote HTTP server to assess this vulnerability, so this might be a false positive.
* References:
http://www-1.ibm.com/support/docview.wss?uid=swg21212934
http://www.cybsec.com/vuln/default_configuration_information_disclosure_lotus_domino.pdf
http://secunia.com/advisories/16231/
http://archives.neohapsis.com/archives/bugtraq/2005-07/0438.html
* Platforms Affected:
IBM Lotus Notes and Lotus Domino versions prior to 6.5.5 and 6.0.6
Any operating system Any version |
| Recommendation |
No upgrade or patch available as of August 2005.
Upgrade to the latest Maintenance Release of Lotus Notes/Domino (6.5.5 or 6.0.6 or later), when new fixed version becomes available from the IBM Support Services Web page at http://www-306.ibm.com/software/lotus/support/upgradecentral/index.html |
| Related URL |
CVE-2005-2428 (CVE) |
| Related URL |
14388,14389 (SecurityFocus) |
| Related URL |
21556 (ISS) |
|
