PT-2005-3363 · Ibm · Ibm Lotus Notes

Carsten Eiram

Published

2005-12-31

Updated

2018-10-19

CVE-2005-2454

CVSS v2.0

4.6

Medium

Vector

AV:L/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions IBM Lotus Notes versions 6.5.4 through 6.5.5 IBM Lotus Notes versions 7.0.0 through 7.0.1

Description The issue allows local users to gain privileges and modify, add, or delete files in the "Notes" folder and all its children due to insecure default permissions.

Recommendations For IBM Lotus Notes versions 6.5.4 through 6.5.5, update the permissions of the "Notes" folder to restrict access. For IBM Lotus Notes versions 7.0.0 through 7.0.1, update the permissions of the "Notes" folder to restrict access.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-264

Related Identifiers

CVE-2005-2454

Affected Products

Ibm Lotus Notes

PT-2005-3363 · Ibm · Ibm Lotus Notes

CVE-2005-2454

Weakness Enumeration

Related Identifiers

Affected Products

References · 13