CVE-2006-5835 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2006-5835
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2006-5835

Description: The Notes Remote Procedure Call (NRPC) protocol in IBM Lotus Notes Domino before 6.5.5 FP2 and 7.x before 7.0.2 does not require authentication to perform user lookups, which allows remote attackers to obtain the user ID file.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/30118 ST 1017203 SAID Secunia Advisory: SA22741 MISC http://www.fortconsult.net/images/pdf/lotusnotes_keyfiles.pdf CONFIRM http://www-1.ibm.com/support/docview.wss?rs=463&uid=swg21248026 BID 20960

Return to the previous page.