PT-2017-8885 · Ibm · Ibm Domino

Published

2017-06-07

Updated

2019-10-16

CVE-2016-6087

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions IBM Domino versions 8.5 through 9.0

Description The issue allows an attacker to steal credentials by utilizing multiple sessions and large amounts of data, exploiting the Domino TLS Key Exchange validation.

Recommendations For IBM Domino versions 8.5 through 9.0, consider restricting access to sensitive data and implementing additional security measures to prevent credential theft until a fix is available.

Fix

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-20

Related Identifiers

CVE-2016-6087

Affected Products

Ibm Domino

PT-2017-8885 · Ibm · Ibm Domino

CVE-2016-6087

Weakness Enumeration

Related Identifiers

Affected Products

References · 6