IBM Lotus Notes 'SURunAs.exe' Insecure Password Storage Information Disclosure Vulnerability

Bugtraq ID:	39525
Class:	Design Error
CVE:	CVE-2010-1487
Remote:	No
Local:	Yes
Published:	Apr 15 2010 12:00AM
Updated:	Apr 13 2015 09:02PM
Credit:	IBM
Vulnerable:	IBM Lotus Notes 7.0.3 IBM Lotus Notes 7.0.2 IBM Lotus Notes 7.0.1 IBM Lotus Notes 8.5 IBM Lotus Notes 8.0 IBM Lotus Notes 7.0.2 FP2 IBM Lotus Notes 7.0.2 FP1 IBM Lotus Notes 7.0
Not Vulnerable:

IBM Lotus Notes 'SURunAs.exe' Insecure Password Storage Information Disclosure Vulnerability

IBM Lotus Notes 'SURunAs.exe' is prone to an information-disclosure vulnerability because it fails to securely store Windows administrative authentication credentials.

Successful attacks can allow a local attacker to gain elevated privileges by obtaining access to an administrator's credentials.

Versions of Lotus Notes 7.0, 8.0, and 8.5 are affected.

IBM Lotus Notes 'SURunAs.exe' Insecure Password Storage Information Disclosure Vulnerability

An attacker can leverage this issue using a variety of widely available tools.

IBM Lotus Notes 'SURunAs.exe' Insecure Password Storage Information Disclosure Vulnerability

Solution:
The vendor advises customers to change administrative passwords after the 'SURunAs' Notes installations are complete.

IBM Lotus Notes 'SURunAs.exe' Insecure Password Storage Information Disclosure Vulnerability

References:

• 1427073 Password stored in SURunAs.exe can be compromised (IBM)