PT-2018-4067 · Ibm · Ibm Inotes

Published

2018-07-16

Updated

2018-09-17

CVE-2013-0522

CVSS v2.0

1.9

Low

Vector

AV:L/AC:M/Au:N/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions IBM Notes versions 8.0 through 9.0

Description The issue allows local users to discover passwords via vectors involving an unspecified operating system communication mechanism for password transmission between Windows and Notes.

Recommendations For IBM Notes versions 8.0 through 9.0, consider restricting access to the Single Logon feature until a fix is available. As a temporary workaround, disabling the Single Logon feature may help minimize the risk of password discovery.

Fix

Information Disclosure

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-200

Related Identifiers

CVE-2013-0522

Affected Products

Ibm Inotes

PT-2018-4067 · Ibm · Ibm Inotes

CVE-2013-0522

Weakness Enumeration

Related Identifiers

Affected Products

References · 4