Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

Lotus Domino Server Security Vulnerabilities

cve
cve

CVE-2008-7253

The default configuration of the web server in IBM Lotus Domino Server, possibly 6.0 through 8.0, enables the HTTP TRACE method, which makes it easier for remote attackers to steal cookies and authentication credentials via a cross-site tracing (XST) attack, a related issue to CVE-2004-2763 and...

6.2AI Score

0.003EPSS

2010-01-25 07:30 PM
55
cve
cve

CVE-2006-0580

IBM Lotus Domino Server 7.0 allows remote attackers to cause a denial of service (segmentation fault) via a crafted packet to the LDAP port...

6.6AI Score

0.742EPSS

2006-02-08 01:02 AM
42
cve
cve

CVE-2005-1101

Multiple buffer overflows in Lotus Domino Server 6.0.5 and 6.5.4 allow remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via large amounts of data in certain (1) time or (2) date...

8.2AI Score

0.023EPSS

2005-05-02 04:00 AM
24
cve
cve

CVE-2005-0986

NLSCCSTR.DLL in the web service in IBM Lotus Domino Server 6.5.1, 6.0.3, and possibly other versions allows remote attackers to cause a denial of service (deep recursion and nHTTP.exe process crash) via a long GET request containing UNICODE decimal value 430 characters, which causes the stack to...

6.8AI Score

0.918EPSS

2005-05-02 04:00 AM
35
cve
cve

CVE-2002-2025

Lotus Domino server 5.0.9a and earlier allows remote attackers to cause a denial of service by exhausting the number of working threads via a large number of HTTP requests for (1) an MS-DOS device name and (2) an MS-DOS device name with a large number of characters appended to the device...

7.5AI Score

0.007EPSS

2002-12-31 05:00 AM
22
cve
cve

CVE-2002-0037

Lotus Domino Servers 5.x, 4.6x, and 4.5x allows attackers to bypass the intended Reader and Author access list for a document's object via a Notes API call (NSFDbReadObject) that directly accesses the...

6.8AI Score

0.022EPSS

2002-04-22 04:00 AM
26
cve
cve

CVE-2001-1567

Lotus Domino server 5.0.9a and earlier allows remote attackers to bypass security restrictions and view Notes database files and possibly sensitive Notes template files (.ntf) via an HTTP request with a large number of "+" characters before the .nsf file extension, which are converted to spaces by....

7AI Score

0.002EPSS

2001-12-31 05:00 AM
29
cve
cve

CVE-1999-0729

Buffer overflow in Lotus Notes LDAP (NLDAP) allows an attacker to conduct a denial of service through the ldap_search...

7.5AI Score

0.006EPSS

2001-03-12 05:00 AM
29