Authentication Bypass Vulnerability in IBM Domino 8.5.x
CVE-2013-0487

Currently unrated

Key Information:

Vendor: IBM
Status: Lotus Domino
Vendor: CVE Published:; 27 March 2013

Summary

The Java Console in IBM Domino 8.5.x exposes a significant security flaw that allows remote authenticated users to hijack temporary credentials. This vulnerability arises from the exploitation of specific configuration details, enabling unauthorized access and potential manipulation of user sessions. Such a breach could lead to further exploitation of system privileges, emphasizing the importance of timely security assessments and updates.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/81852

vdb-entryx_refsource_XF

http://www-01.ibm.com/support/docview.wss?uid=swg21627597

x_refsource_CONFIRM

Timeline

Vulnerability published
Mar 27, 2013
Vulnerability Reserved
Dec 16, 2012