Lucene search

MitreCVE-2000-1215

HistoryApr 21, 2005 - 4:00 a.m.

CVE-2000-1215

2005-04-2104:00:00

mitre

web.nvd.nist.gov

lotus domino server

http replies

sensitive data

cve-2000-1215

nvd

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

AI Score

6.7

Confidence

Low

EPSS

0.008

Percentile

81.4%

JSON

The default configuration of Lotus Domino server 5.0.8 includes system information (version, operating system, and build date) in the HTTP headers of replies, which allows remote attackers to obtain sensitive information.

Affected configurations

Nvd

Node

ibmlotus_dominoMatch5.0.8

VendorProductVersionCPE
ibmlotus_domino5.0.8cpe:2.3:a:ibm:lotus_domino:5.0.8:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
ibm	lotus_domino	5.0.8	cpe:2.3:a:ibm:lotus_domino:5.0.8:::::::*

References

marc.info/?l=bugtraq&m=100094373621813&w=2

www-10.lotus.com/ldd/r5fixlist.nsf/5c087391999d06e7852569280062619d/5552251934afaa9585256c0000737a7f?OpenDocument&Highlight=0%2CAWHN4A8QWM

www.kb.cert.org/vuls/id/984555

exchange.xforce.ibmcloud.com/vulnerabilities/10685

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

AI Score

6.7

Confidence

Low

EPSS

0.008

Percentile

81.4%

JSON

Related for CVE-2000-1215