Описание
The Notes Remote Procedure Call (NRPC) protocol in IBM Lotus Notes Domino before 6.5.5 FP2 and 7.x before 7.0.2 does not require authentication to perform user lookups, which allows remote attackers to obtain the user ID file.
The Notes Remote Procedure Call (NRPC) protocol in IBM Lotus Notes Domino before 6.5.5 FP2 and 7.x before 7.0.2 does not require authentication to perform user lookups, which allows remote attackers to obtain the user ID file.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2006-5835
- https://exchange.xforce.ibmcloud.com/vulnerabilities/30118
- http://secunia.com/advisories/22741
- http://securitytracker.com/id?1017203
- http://www-1.ibm.com/support/docview.wss?rs=463&uid=swg21248026
- http://www.fortconsult.net/images/pdf/lotusnotes_keyfiles.pdf
- http://www.securityfocus.com/bid/20960
- http://www.vupen.com/english/advisories/2006/4411
EPSS
Процентиль: 85%
0.02464
Низкий
CVE ID
Связанные уязвимости
nvd
около 19 лет назад
The Notes Remote Procedure Call (NRPC) protocol in IBM Lotus Notes Domino before 6.5.5 FP2 and 7.x before 7.0.2 does not require authentication to perform user lookups, which allows remote attackers to obtain the user ID file.
EPSS
Процентиль: 85%
0.02464
Низкий