The default configuration of the server console in IBM Lotus Domino does not require a password (aka Server_Console_Password), which allows physically proximate malicious users to perform administrative changes or obtain sensitive information via a (1) Load, (2) Tell, or (3) Set Configuration command.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ibm lotus domino |