Shalom Carmel

**Name of the Vulnerable Software and Affected Versions** IBM Lotus Notes (affected versions not specified) **Description** The issue allows remote attackers to obtain sensitive information, specifically password hashes, due to improper access restrictions in the Notes Address Book (NAB). This can be achieved through various means, including accessing the password digest field in the Administration tab of a Lotus Notes client, the `PasswordDigest` and `HTTPPassword` fields in the document properties in the NAB, or by directly querying the Domino LDAP server. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** IBM iSeries AS/400 (affected versions not specified) **Description** The issue concerns the POP3 server, which returns different error messages depending on whether a user exists or not. This behavior allows remote attackers to determine valid user IDs on the server. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** AS/400 version 4.3 **Description** The issue allows remote attackers to obtain sensitive information via a symlink attack using RCMD and the ADDLNK utility. This is demonstrated using the QSYS.LIB library. **Recommendations** For AS/400 version 4.3, consider restricting access to the ADDLNK utility and RCMD to minimize the risk of exploitation. Additionally, avoid using the QSYS.LIB library in IFS mode until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** AS/400 version OS400 5.2 **Description** The issue concerns AS/400 running OS400 5.2, where LDAP is installed and enabled by default. This setup allows remote authenticated users to obtain OS/400 user profiles by performing a search. **Recommendations** For AS/400 version OS400 5.2, consider disabling the LDAP service or restricting access to it to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** AS/400 Telnet 5250 terminal emulation clients versions (affected versions not specified) **Description** The issue allows malicious AS/400 servers to execute arbitrary commands on clients using a specific sequence of commands, including STRPCO (Start PC Organizer) followed by STRPCCMD (Start PC command). This can be exploited to create a backdoor account, for example, using REXEC. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.