5
CVE-2006-5835
- EPSS 13.49%
- Veröffentlicht 10.11.2006 01:07:00
- Zuletzt bearbeitet 16.06.2026 22:31:58
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
The Notes Remote Procedure Call (NRPC) protocol in IBM Lotus Notes Domino before 6.5.5 FP2 and 7.x before 7.0.2 does not require authentication to perform user lookups, which allows remote attackers to obtain the user ID file.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Ibm ≫ Lotus Notes Version5.0.3
Ibm ≫ Lotus Notes Version5.0.12
Ibm ≫ Lotus Notes Version6.0
Ibm ≫ Lotus Notes Version6.0.1
Ibm ≫ Lotus Notes Version6.0.2
Ibm ≫ Lotus Notes Version6.0.3
Ibm ≫ Lotus Notes Version6.0.4
Ibm ≫ Lotus Notes Version6.0.5
Ibm ≫ Lotus Notes Version6.5
Ibm ≫ Lotus Notes Version6.5.1
Ibm ≫ Lotus Notes Version6.5.2
Ibm ≫ Lotus Notes Version6.5.3
Ibm ≫ Lotus Notes Version6.5.4
Ibm ≫ Lotus Notes Version6.5.5
Ibm ≫ Lotus Notes Version7.0
Ibm ≫ Lotus Notes Version7.0.1
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 13.49% | 0.96 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5 | 10 | 2.9 |
AV:N/AC:L/Au:N/C:P/I:N/A:N
|
http://www.vupen.com/english/advisories/2006/4411
http://secunia.com/advisories/22741
http://securitytracker.com/id?1017203
http://www-1.ibm.com/support/docview.wss?rs=463&uid=swg21248026
http://www.fortconsult.net/images/pdf/lotusnotes_keyfiles.pdf
http://www.securityfocus.com/bid/20960
https://exchange.xforce.ibmcloud.com/vulnerabilities/30118