Vulnerabilities > CVE-2002-2191 - Unspecified vulnerability in Lotus Domino 5.0.8/5.0.9/5.0.9A
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN lotus
exploit available
Summary
Lotus Domino 5.0.9a and earlier, even when configured with the 'DominoNoBanner=1' option, allows remote attackers to obtain potential sensitive information such as the version via a request for a non-existent .nsf database, which leaks the version in the HTTP banner.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 3 |
Exploit-Db
| description | Lotus Domino 5.0.8-9 Non-existent NSF Database Banner Information Disclosure. CVE-2002-2191. Remote exploits for multiple platform |
| id | EDB-ID:21996 |
| last seen | 2016-02-02 |
| modified | 2002-11-07 |
| published | 2002-11-07 |
| reporter | Frank Perreault |
| source | https://www.exploit-db.com/download/21996/ |
| title | Lotus Domino 5.0.8-9 Non-existent NSF Database Banner Information Disclosure |
References
- http://www.iss.net/security_center/static/10557.php
- http://www.iss.net/security_center/static/10557.php
- http://www.securityfocus.com/archive/1/298874/2002-11-05/2002-11-11/2
- http://www.securityfocus.com/archive/1/298874/2002-11-05/2002-11-11/2
- http://www.securityfocus.com/bid/6128
- http://www.securityfocus.com/bid/6128