Lotus Notes < 7.0.2 ntmulti.exe Local Privilege Escalation
High Nessus Network Monitor Plugin ID 4186
SynopsisThe remote host is vulnerable to a local 'privilege escalation' flaw.
DescriptionThe remote host is running the Lotus Notes email client. The reported version is less than 7.0.2. There is a flaw in this version of Lotus Notes that would allow a local user to replace the 'ntmulti.exe' file. After replacing the executable, the local attacker would have their code executed with SYSTEM level privileges.
SolutionUpgrade to version 7.0.2 or higher.