Vulnerabilities > CVE-2001-0846 - Unspecified vulnerability in Lotus Domino

CVSS 10.0 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

network

low complexity

lotus

critical

NVD

Published: 2001-12-06

Updated: 2017-10-10

Summary

Lotus Domino 5.x allows remote attackers to read files or execute arbitrary code by requesting the ReplicaID of the Web Administrator template file (webadmin.ntf).

Vulnerable Configurations

Part	Description	Count
Application	Lotus Lotus Domino 5.0 Lotus Domino 5.0.1 Lotus Domino 5.0.2 Lotus Domino 5.0.2A Lotus Domino 5.0.2C Lotus Domino 5.0.3 Lotus Domino 5.0.4 Lotus Domino 5.0.4A Lotus Domino 5.0.5 Lotus Domino 5.0.6 Lotus Domino 5.0.6A Lotus Domino 5.0.7 Lotus Domino 5.0.7A Lotus Domino 5.0.8	14

References

http://marc.info/?l=bugtraq&m=100448721830960&w=2
http://www.iss.net/security_center/static/7424.php
http://www.osvdb.org/1979
https://exchange.xforce.ibmcloud.com/vulnerabilities/7424