IBM Notes Single Sign On Password Disclosure
Medium Nessus Plugin ID 66722
SynopsisThe version of IBM Notes installed on the remote Windows host is affected by an information disclosure vulnerability.
DescriptionThe version of IBM Notes installed on the remote Windows host uses the built-in Single Sign On feature for authentication. Single Sign On is affected by a vulnerability wherein malicious code planted on a user's workstation can be used to reveal the password of an authenticated user.
SolutionDisable Notes Client Single Sign On.