IBM Lotus Domino agent signature verification privilege escalation
| domino-signature-privilege-escalation (34718) |  High Risk |
Description:
IBM Lotus Domino could allow a remote attacker with access to the Domino server to gain elevated privileges on the system, caused by an error in the agent signature verification. By replacing the design of the database with a malicious template, a remote attacker could exploit this vulnerability to gain Full Access Administrator privileges on the vulnerable system.
Platforms Affected:
- IBM, Lotus Domino 7.0
Remedy:
Refer to IBM Technote (FAQ) 1258784 for patch, upgrade, or suggested workaround information. See References.
Consequences:
Gain Privileges
References:
- IBM Technote (FAQ) 1258784, Vulnerability in agent signature verification which may result in elevation of user's rights to Full Access Administrator. at http://www-1.ibm.com/support/docview.wss?rs=477&uid=swg21258784.
- BID-24322: IBM Lotus Domino Agent Signature Verification Local Privilege Escalation Vulnerability
- CVE-2007-0068: IBM Lotus Domino 7.0.x before 7.0.3 does not revalidate the signature on a signed scheduled agent after the agent is modified, which allows remote authenticated users to gain privileges via a modified agent in a server database.
- SA25520: IBM Lotus Domino Agent Signature Verification Vulnerability
- VUPEN/ADV-2007-2063: IBM Lotus Domino Agent Signature Verification Privilege Escalation Vulnerability
Reported:
Jun 04, 2007
The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (IBM Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.
For corrections or additions please email xforce@iss.net