PT-2005-3363 · Ibm · Ibm Lotus Notes

Carsten Eiram

Publicado

2005-12-31

Atualizado

2018-10-19

CVE-2005-2454

CVSS v2.0

4.6

Média

Vetor

AV:L/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions IBM Lotus Notes versions 6.5.4 through 6.5.5 IBM Lotus Notes versions 7.0.0 through 7.0.1

Description The issue allows local users to gain privileges and modify, add, or delete files in the "Notes" folder and all its children due to insecure default permissions.

Recommendations For IBM Lotus Notes versions 6.5.4 through 6.5.5, update the permissions of the "Notes" folder to restrict access. For IBM Lotus Notes versions 7.0.0 through 7.0.1, update the permissions of the "Notes" folder to restrict access.

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-264

Identificadores relacionados

CVE-2005-2454

Produtos afetados

Ibm Lotus Notes

PT-2005-3363 · Ibm · Ibm Lotus Notes

CVE-2005-2454

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 13