CVE Vulnerabilities

CVE-2010-4547

Published: Dec 16, 2010 | Modified: Dec 17, 2010
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
3.5 LOW
AV:N/AC:M/Au:S/C:N/I:P/A:N
RedHat/V2
RedHat/V3
Ubuntu

IBM Lotus Notes Traveler before 8.5.1.3, when a multidomain environment is used, does not properly apply policy documents to mobile users from a different Domino domain than the Traveler server, which allows remote authenticated users to bypass intended access restrictions by using credentials from a different domain.

Affected Software

Name Vendor Start Version End Version
Lotus_notes_traveler Ibm * 8.5.1.2 (including)
Lotus_notes_traveler Ibm 8.0 (including) 8.0 (including)
Lotus_notes_traveler Ibm 8.0.1 (including) 8.0.1 (including)
Lotus_notes_traveler Ibm 8.0.1.2 (including) 8.0.1.2 (including)
Lotus_notes_traveler Ibm 8.0.1.3 (including) 8.0.1.3 (including)
Lotus_notes_traveler Ibm 8.5.0.0 (including) 8.5.0.0 (including)
Lotus_notes_traveler Ibm 8.5.0.1 (including) 8.5.0.1 (including)
Lotus_notes_traveler Ibm 8.5.0.2 (including) 8.5.0.2 (including)
Lotus_notes_traveler Ibm 8.5.1.1 (including) 8.5.1.1 (including)

References