Lotus Notes Client Unencrypted Sent Mail Vulnerability
BID:1823
Info
Lotus Notes Client Unencrypted Sent Mail Vulnerability
| Bugtraq ID: | 1823 |
| Class: | Configuration Error |
| CVE: | |
| Remote: | No |
| Local: | Yes |
| Published: | Mar 23 1999 12:00AM |
| Updated: | Mar 23 1999 12:00AM |
| Credit: | Posted to Bugtraq on March 23, 1999 by Martin Bartosch <[email protected]>. |
| Vulnerable: |
Lotus Notes Client 4.5 |
| Not Vulnerable: | |
Discussion
Lotus Notes Client Unencrypted Sent Mail Vulnerability
Lotus Notes Client has a built-in feature that automatically encrypts email sent to other Lotus Notes users. Typically Lotus Notes sends two copies of outgoing email, one to the email recipient and one to the 'Sent Mail' folder which is normally located on the Domino mail server. Both copies should be encrypted. However, under certain circumstances, the copy sent to the 'Sent Mail' folder could be transmitted in plaintext form.
If the forward slash "/" convention is used as a path separator when specifying a mail file rather than a backward slash "\", the unencrypted email vulnerability will result. If a malicious third party could eavesdrop on the network traffic between the client and server or have access to the 'Sent Mail' folder itself, they may possibly intercept confidential information in cleartext.
Lotus Notes Client has a built-in feature that automatically encrypts email sent to other Lotus Notes users. Typically Lotus Notes sends two copies of outgoing email, one to the email recipient and one to the 'Sent Mail' folder which is normally located on the Domino mail server. Both copies should be encrypted. However, under certain circumstances, the copy sent to the 'Sent Mail' folder could be transmitted in plaintext form.
If the forward slash "/" convention is used as a path separator when specifying a mail file rather than a backward slash "\", the unencrypted email vulnerability will result. If a malicious third party could eavesdrop on the network traffic between the client and server or have access to the 'Sent Mail' folder itself, they may possibly intercept confidential information in cleartext.
Exploit / POC
Lotus Notes Client Unencrypted Sent Mail Vulnerability
See discussion.
See discussion.
Solution / Fix
Lotus Notes Client Unencrypted Sent Mail Vulnerability
Solution:
Currently the SecurityFocus staff are not aware of any vendor supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected].
Solution:
Currently the SecurityFocus staff are not aware of any vendor supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected].
References
Lotus Notes Client Unencrypted Sent Mail Vulnerability
References:
References: