Re: Lotus 1352 NRPC Encryption

From: Chris.McGinley@sungard.com
Date: Thu Dec 20 2007 - 15:30:58 EST


Domino has a vulnerability in that it allows Notes clients without ID
files to enter their name and ask for the ID file. You can use the Notes
client (new setup) to manually test this; just point to the server and
specify your username. Notes will grab the ID file if it exists...you'll
have to intercept it from your Notes data directory and crack its
password.

It can be scripted with Perl as well, but I've not seen a tool publicly
available to exploit it.

-Chris

Clone <c70n3@yahoo.co.in>
12/20/2007 03:38 AM

To
Chris.McGinley@sungard.com
cc
pen-test@securityfocus.com
Subject
Re: Lotus 1352 NRPC Encryption

Hmm.. we are doing a blacbox pen test .. we do not
have a test username or password or ID file.. in such
a scenario how can we use the Notes client to get this
info?

--- Chris.McGinley@sungard.com wrote:

> NRPC encryption is configured by the Notes client,
> not the server.
>
> -Chris
>
>
>
>
> Clone <c70n3@yahoo.co.in>
> Sent by: listbounce@securityfocus.com
> 12/18/2007 11:39 PM
>
> To
> pen-test@securityfocus.com
> cc
>
> Subject
> Lotus 1352 NRPC Encryption
>
>
>
>
>
>
> Hello All,
>
> Is there a way to find out anonymously whether port
> 1352 of Lotus Notes NRPC service uses encryption
> mechanisms or not?
>
> Good day.
>
>
> Share files, take polls, and discuss your
> passions - all under one
> roof. Go to http://in.promos.yahoo.com/groups
>
>
>
------------------------------------------------------------------------
> This list is sponsored by: Cenzic
>
> Need to secure your web apps NOW?
> Cenzic finds more, "real" vulnerabilities fast.
> Click to try it, buy it or download a solution FREE
> today!
>
> http://www.cenzic.com/downloads
>
------------------------------------------------------------------------
>
>
>
>
>

      Explore your hobbies and interests. Go to
http://in.promos.yahoo.com/groups

------------------------------------------------------------------------
This list is sponsored by: Cenzic

Need to secure your web apps NOW?
Cenzic finds more, "real" vulnerabilities fast.
Click to try it, buy it or download a solution FREE today!

http://www.cenzic.com/downloads
------------------------------------------------------------------------



This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:58:17 EDT