Vulnerabilities > CVE-1999-1275 - Unspecified vulnerability in IBM Lotus CC Mail 8.0

CVSS 4.6 - MEDIUM

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

local

low complexity

ibm

NVD

Published: 1997-09-08

Updated: 2017-12-19

Summary

Lotus cc:Mail release 8 stores the postoffice password in plaintext in a hidden file which has insecure permissions, which allows local users to gain privileges.

Vulnerable Configurations

Part	Description	Count
Application	Ibm IBM Lotus CC Mail 8.0	1

References

http://www.securityfocus.com/archive/1/9478
https://exchange.xforce.ibmcloud.com/vulnerabilities/1619