-
April 1st, 2003, 12:15 PM
#1
Member
Dominos
Hello,
I am doing a pentest on a Dominos server and have read access to many databases, among others the names.nsf, admin4.nsf, and log.nsf. I can read their contents but don't really know what I should do to come further. Does anyone have any tips?
Server: Lotus-Domino/0
OS: W2K Server
I can't really say what sort of setup they have due to the fact that it is my job to figure that out. I made a Lotus scanner and it found the following databases:
/domcfg.nsf
/admin4.nsf
/agentrunner.nsf
/bookmark.nsf
/busytime.nsf
/catalog.nsf
/certsrv.nsf
/cpa.nsf
/dirassist.nsf
/doc/dspug.nsf
/domcfg.nsf
/events4.nsf
/help/decsdoc.nsf
/help/dols_help.nsf
/help/help5_admin.nsf
/help/help5_client.nsf
/help/help5_designer.nsf
/help/lccon.nsf
/help/lsxlc.nsf
/help/readme.nsf
/homepage.nsf
/iNotes/Forms5.nsf/$DefaultNav
/iNotes/Forms5.nsf
/log.nsf
/mail.box
/mtatbls.nsf
/names.nsf
/reports.nsf
/statmail.nsf
/statrep.nsf
/vpuserinfo.nsf
/webadmin.nsf
/admin4.nsf
/AgentRunner.nsf
/bookmark.nsf
/busytime.nsf
/catalog.nsf
/certsrv.nsf
/cpa.nsf
/dirassist.nsf
/doc/dspug.nsf
/domcfg.nsf
/events4.nsf
/help/decsdoc.nsf
/help/dols_help.nsf
/help/help5_admin.nsf
/help/help5_client.nsf
/help/help5_designer.nsf
/help/lccon.nsf
/help/lsxlc.nsf
/help/readme.nsf
/homepage.nsf
/iNotes/Forms5.nsf
/log.nsf
/mail.box
/mtatbls.nsf
/names.nsf
/reports.nsf
/statmail.nsf
/statrep.nsf
/webadmin.nsf
I have read access to about 85% of them.
Regards,
-
April 1st, 2003, 12:51 PM
#2
I take it that the server is a Lotus Notes 5 server? (/iNotes/Forms5.nsf). There are a few vulnerabilities out there for 4/5/6 servers so you might want to find them and replicate them. The fact that you can READ 85% of the databases would have me worried. That's a huge information leak and could mean a competitor -- being of a more nastier sort -- could find out information on my next big "thang".
-
April 1st, 2003, 02:38 PM
#3
Surreal,
See I told you mate!
The omnipotent MsMittens (who sadly forsaked Pyroto) has already come back with some good suggestions!!
MsMittens - see the other thread relating to this earlier today in the MS Security Discussion forum. Surreal gave full details of the set up.
Cheers
Vice$Dos$
I remember when Nihil was ickle. Does that mean I'm old?
-
April 1st, 2003, 03:03 PM
#4
Re: Dominos
Originally posted here by Surreal
Hello,
I am doing a pentest on a Dominos server and have read access to many databases, among others the names.nsf, admin4.nsf, and log.nsf. I can read their contents but don't really know what I should do to come further. Does anyone have any tips?
These are the ones I recently ran across :
http://www.securityfocus.com/bid/6872
http://www.securityfocus.com/bid/7038
http://www.securityfocus.com/bid/7037
checkout http://www.securityfocus.com/bid for more.
-
April 1st, 2003, 03:32 PM
#5
Member
Good stuff. There is lots og help to get here. Thanks to you all *Vice$Dos$*
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
-
Forum Rules
|
|