CVE-1999-1275 — MEDIUM (4.6)

Vulnerability Description

Lotus cc:Mail release 8 stores the postoffice password in plaintext in a hidden file which has insecure permissions, which allows local users to gain privileges.

CVSS Score

4.6

MEDIUM

AV:L/AC:L/Au:N/C:P/I:P/A:P

Confidentiality

PARTIAL

Integrity

PARTIAL

Availability

PARTIAL

Affected Products

Vendor	Product	Versions
Ibm	Lotus Cc Mail	8.0

References

http://www.securityfocus.com/archive/1/9478Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/1619
http://www.securityfocus.com/archive/1/9478Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/1619

FAQ

What is CVE-1999-1275?

CVE-1999-1275 is a vulnerability with a CVSS score of 4.6 (MEDIUM). Lotus cc:Mail release 8 stores the postoffice password in plaintext in a hidden file which has insecure permissions, which allows local users to gain privileges.

How severe is CVE-1999-1275?

CVE-1999-1275 has been rated MEDIUM with a CVSS base score of 4.6/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-1999-1275?

Check the references section above for vendor advisories and patch information. Affected products include: Ibm Lotus Cc Mail.