4 matches found
CVE-2001-1567
Lotus Domino server 5.0.9a and earlier allows remote attackers to bypass security restrictions and view Notes database files and possibly sensitive Notes template files .ntf via an HTTP request with a large number of "+" characters before the .nsf file extension, which are converted to spaces by...
CVE-2001-1567
CVE-2001-1567 affects IBM Lotus Domino Server up to 5.0.9a. A crafted HTTP request containing many "+" characters before a .nsf extension can cause Domino to convert pluses to spaces, allowing remote attackers to bypass security restrictions and view Notes database files and possibly sensitive No...
IBM Lotus Domino Crafted .nsf Request Authentication Bypass
By creating a specially crafted URL, the authentication mechanism of the Domino database can be circumvented. These URLs should look like : http://host.com/.ntf.nsf/ in which has a certain length. %NASLMINLEVEL 70300 This script was written by Davy Van De Moere - CISSP [email protected] See the...
CVE-2001-1567
Lotus Domino server 5.0.9a and earlier allows remote attackers to bypass security restrictions and view Notes database files and possibly sensitive Notes template files .ntf via an HTTP request with a large number of "+" characters before the .nsf file extension, which are converted to spaces by...