IBM Lotus Notes 6.0/6.5/7.0 Display Alternate Names information disclosure
| CVSS Meta Temp Score | Current Exploit Price (≈) | CTI Interest Score |
|---|---|---|
| 5.3 | $0-$5k | 0.00 |
Summary
A vulnerability classified as problematic was found in IBM Lotus Notes 6.0/6.5/7.0. This issue affects some unknown processing of the component Display Alternate Names Handler. Executing a manipulation can lead to information disclosure. This vulnerability is registered as CVE-2006-3778. No exploit is available. Disabling the affected component is advisable.
Details
A vulnerability has been found in IBM Lotus Notes 6.0/6.5/7.0 (Groupware Software) and classified as problematic. This vulnerability affects an unknown function of the component Display Alternate Names Handler. The manipulation with an unknown input leads to a information disclosure vulnerability. The CWE definition for the vulnerability is CWE-200. The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information. As an impact it is known to affect confidentiality. CVE summarizes:
IBM Lotus Notes 6.0, 6.5, and 7.0 does not properly handle replies to e-mail messages with alternate name users when the (1) "Save As Draft" option is used or (2) a "," (comma) is inside the "phrase" portion of an address, which can cause the e-mail to be sent to users that were deleted from the To, CC, and BCC fields, which allows remote attackers to obtain the list of original recipients.
The weakness was published 07/17/2006 with IBM (Website). The advisory is shared for download at www-1.ibm.com. This vulnerability was named CVE-2006-3778 since 07/21/2006. The attack can be initiated remotely. No form of authentication is required for a successful exploitation. There are neither technical details nor an exploit publicly available. The MITRE ATT&CK project declares the attack technique as T1592.
Upgrading to version 6.5.6 eliminates this vulnerability. Applying a patch is able to eliminate this problem. The bugfix is ready for download at www-1.ibm.com. The best possible mitigation is suggested to be disabling the affected component.
The vulnerability is also documented in the databases at X-Force (27765), SecurityFocus (BID 19022†), OSVDB (27338†), Secunia (SA21096†) and SecurityTracker (ID 1016819†). Once again VulDB remains the best source for vulnerability data.
Product
Type
Vendor
Name
Version
License
Website
- Vendor: https://www.ibm.com/
CPE 2.3
CPE 2.2
CVSSv4
VulDB Vector: 🔍VulDB Reliability: 🔍
CVSSv3
VulDB Meta Base Score: 5.3VulDB Meta Temp Score: 5.3
VulDB Base Score: 5.3
VulDB Temp Score: 5.3
VulDB Vector: 🔍
VulDB Reliability: 🔍
CVSSv2
| AV | AC | Au | C | I | A |
|---|---|---|---|---|---|
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
|---|---|---|---|---|---|
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
VulDB Base Score: 🔍
VulDB Temp Score: 🔍
VulDB Reliability: 🔍
NVD Base Score: 🔍
Exploiting
Class: Information disclosureCWE: CWE-200 / CWE-284 / CWE-266
CAPEC: 🔍
ATT&CK: 🔍
Physical: No
Local: No
Remote: Yes
Availability: 🔍
Status: Not defined
EPSS Score: 🔍
EPSS Percentile: 🔍
Price Prediction: 🔍
Current Price Estimation: 🔍
| 0-Day | Unlock | Unlock | Unlock | Unlock |
|---|---|---|---|---|
| Today | Unlock | Unlock | Unlock | Unlock |
Threat Intelligence
Interest: 🔍Active Actors: 🔍
Active APT Groups: 🔍
Countermeasures
Recommended: DisableStatus: 🔍
0-Day Time: 🔍
Upgrade: Lotus Notes 6.5.6
Patch: www-1.ibm.com
Timeline
07/13/2006 🔍07/17/2006 🔍
07/17/2006 🔍
07/17/2006 🔍
07/20/2006 🔍
07/21/2006 🔍
07/24/2006 🔍
11/13/2012 🔍
04/21/2017 🔍
Sources
Vendor: ibm.comAdvisory: www-1.ibm.com
Researcher: http://www.ibm.com
Organization: IBM
Status: Confirmed
Confirmation: 🔍
CVE: CVE-2006-3778 (🔍)
GCVE (CVE): GCVE-0-2006-3778
GCVE (VulDB): GCVE-100-2380
X-Force: 27765
SecurityFocus: 19022 - Lotus Notes Mail Recipient Information Disclosure Vulnerability
Secunia: 21096 - Lotus Notes Deleted Mail Recipient Security Issue, Not Critical
OSVDB: 27338 - IBM Lotus Notes Deleted Mail Recipient Persistance
SecurityTracker: 1016819 - IBM Lotus Notes Mail Template Bug May Allow Mail to Be Misaddressed
Vulnerability Center: 37194 - IBM Lotus Notes Remote E-mail Recipient Disclosure Vulnerability, Medium
Entry
Created: 07/20/2006 12:36Updated: 04/21/2017 11:05
Changes: 07/20/2006 12:36 (56), 04/21/2017 11:05 (23)
Complete: 🔍
Cache ID: 216::103
Once again VulDB remains the best source for vulnerability data.
No comments yet. Languages: en.
Please log in to comment.