Skip to main content
This forum is closed to new posts and responses. Individual names altered for privacy purposes. The information contained in this website is provided for informational purposes only and should not be construed as a forum for customer support requests. Any customer support requests should be directed to the official HCL customer support channels below:

HCL Software Customer Support Portal for U.S. Federal Government clients
HCL Software Customer Support Portal

HCL Notes/Domino 8.5 Forum (includes Notes Traveler)

HCL Notes/Domino 8.5 Forum (includes Notes Traveler)
Previous Next

Re: Webcast "Upgrade Notes Client...using Smart Upgrade"-Security Vulnerability

What is being done to address the security vulnerabilities that are inherent in the Smart Upgrade process (the SuRunAs program: administrative credentials accessible in clear text), as documented in SPRs JSTN84CSC7 and JSTN837SEG (and CVE-2010-1487 and Secunia Advisory SA39507)?

This issue makes the entire SmartUpgrade process unusable in any environment where security is important.


Feedback response number WEBB8G4RSJ created by ~Sarah Cistoomarader on 04/20/2011

Webcast "Upgrade Notes Client to la... (~Kirk Asahipisk... 11.Apr.11)
. . Re: Webcast "Upgrade Notes Client..... (~Sarah Cistooma... 20.Apr.11)
. . Re: Webcast "Upgrade Notes Client t... (~Sarah Cistooma... 26.Apr.11)




Printer-friendly

Search this forum

Member Tools


RSS Feeds

 RSS feedsRSS
All forum posts RSS
All main topics RSS