Vulners
Lucene search
Lotus Domino R5 and R6 WebMail - Information Disclosure
| Reporter | Title | Published | Views | Family All 24 |
|---|---|---|---|---|
 | IBM Lotus Domino R8 - Password Hash Extraction Exploit | 25 Feb 201600:00 | – | zdt |
| Lotus Domino <= R6 Webmail Remote Password Hash Dumper Exploit | 13 Feb 200700:00 | – | zdt |
 | Lotus Domino Server Multiple Information Disclosure Vulnerabilities | 26 Jul 200500:00 | – | nessus |
| IBM Lotus Domino HTML Hidden Field Encrypted Password Disclosure | 27 Jul 200500:00 | – | nessus |
 | CVE-2005-2428 | 3 Aug 200504:00 | – | cve |
| CVE-2005-2696 | 25 Aug 200504:00 | – | cve |
 | CVE-2005-2428 | 3 Aug 200504:00 | – | cvelist |
| CVE-2005-2696 | 25 Aug 200504:00 | – | cvelist |
 | DSquare Exploit Pack: D2SEC_LOTUS_HASH | 3 Aug 200504:00 | – | d2 |
 | IBM Lotus Domino R8 - Password Hash Extraction | 25 Feb 201600:00 | – | exploitdb |
10
id: CVE-2005-2428
info:
name: Lotus Domino R5 and R6 WebMail - Information Disclosure
author: CasperGN
severity: medium
description: Lotus Domino R5 and R6 WebMail with 'Generate HTML for all fields' enabled (which is by default) allows remote attackers to read the HTML source to obtain sensitive information including the password hash in the HTTPPassword field, the password change date in the HTTPPasswordChangeDate field, and the client Lotus Domino release in the ClntBld field (a different vulnerability than CVE-2005-2696).
impact: |
The vulnerability can lead to the disclosure of sensitive information, potentially compromising user privacy and system security.
remediation: Ensure proper firewalls are in place within your environment to prevent public exposure of the names.nsf database and other sensitive files.
reference:
- http://www.cybsec.com/vuln/default_configuration_information_disclosure_lotus_domino.pdf
- https://www.exploit-db.com/exploits/39495
- https://nvd.nist.gov/vuln/detail/CVE-2005-2428
- http://marc.info/?l=bugtraq&m=112240869130356&w=2
- http://securitytracker.com/id?1014584
classification:
cvss-metrics: CVSS:2.0/AV:N/AC:L/Au:N/C:P/I:N/A:N
cvss-score: 5
cve-id: CVE-2005-2428
cwe-id: CWE-200
epss-score: 0.73635
epss-percentile: 0.99401
cpe: cpe:2.3:a:ibm:lotus_domino:5.0:*:*:*:*:*:*:*
metadata:
max-request: 1
vendor: ibm
product: lotus_domino
tags: cve2005,cve,domino,edb,ibm,vuln
http:
- method: GET
path:
- "{{BaseURL}}/names.nsf/People?OpenView"
matchers-condition: and
matchers:
- type: regex
name: domino-username
part: body
regex:
- '(<a href="/names\.nsf/[0-9a-z\/]+\?OpenDocument)'
- type: status
status:
- 200
# digest: 490a00463044022055c8de6f190a58a3abb0ebc6b830ae99dc6e364b86fbe0fe35c719990b06acf80220719dc67c930977b7d039f7ff5f1ac9b3b69cb0e24270fbf8554b0923325fc673:922c64590222798bb761d5b6d8e72950Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
04 Feb 2026 07:00Current
5.9Medium risk
Vulners AI Score5.9
CVSS 25
EPSS0.73635