EIP-2026-119390

PRE-CVE

Lotus Sametime 8.5.1 - Password Disclosure

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-119390. PoCs published by Adriano Marcio Monteiro.

AI-analyzed exploit summary This is a detailed technical writeup describing an information leakage vulnerability in IBM Lotus Sametime 8.5.1, where verbose logging exposes user credentials in Base64 within log files. The author provides a step-by-step procedure to enable logging and extract credentials from the generated logs.

Description

Lotus Sametime 8.5.1 - Password Disclosure

Exploits (1)

exploitdb WRITEUP

by Adriano Marcio Monteiro · textwebappswindows

https://www.exploit-db.com/exploits/31760

View Code ZIP pw:eip

This is a detailed technical writeup describing an information leakage vulnerability in IBM Lotus Sametime 8.5.1, where verbose logging exposes user credentials in Base64 within log files. The author provides a step-by-step procedure to enable logging and extract credentials from the generated logs.

Classification

Writeup 90%

Attack Type

Info Leak

Complexity

Moderate

Reliability

Reliable

Target: IBM Lotus Sametime 8.5.1

Auth required

Prerequisites: Access to the target system's file system · Ability to modify configuration files · Restarting the Sametime process

MITRE ATT&CK

T1552.001 - Credentials In Files

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026