Vulnerabilities > Lotus > Domino > 5.0.8
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2002-12-31 | CVE-2002-2191 | Information Disclosure vulnerability in Lotus Domino Non-existent NSF Database Banner Lotus Domino 5.0.9a and earlier, even when configured with the 'DominoNoBanner=1' option, allows remote attackers to obtain potential sensitive information such as the version via a request for a non-existent .nsf database, which leaks the version in the HTTP banner. | 5.0 |
| 2002-05-29 | CVE-2002-0245 | Information Disclosure vulnerability in Lotus Domino Banner Lotus Domino server 5.0.8 with NoBanner enabled allows remote attackers to (1) determine the physical path of the server via a request for a nonexistent file with a .pl (Perl) extension, which leaks the pathname in the error message, or (2) make any request that causes an HTTP 500 error, which leaks the server's version name in the HTTP error message. | 7.5 |
| 2001-12-07 | CVE-2001-0954 | Denial of Service vulnerability in Lotus Domino 5.0.5/5.0.8 Lotus Domino 5.0.5 and 5.0.8, and possibly other versions, allows remote attackers to cause a denial of service (block access to databases that have not been previously accessed) via a URL that includes the . | 5.0 |
| 2001-12-06 | CVE-2001-0846 | Unspecified vulnerability in Lotus Domino Lotus Domino 5.x allows remote attackers to read files or execute arbitrary code by requesting the ReplicaID of the Web Administrator template file (webadmin.ntf). | 10.0 |
| 2001-11-30 | CVE-2001-0939 | Denial of Service vulnerability in Lotus Domino SunRPC Lotus Domino 5.08 and earlier allows remote attackers to cause a denial of service (crash) via a SunRPC NULL command to port 443. | 5.0 |
| 2001-09-20 | CVE-2001-1018 | Unspecified vulnerability in Lotus Domino 5.0.8 Lotus Domino web server 5.08 allows remote attackers to determine the internal IP address of the server when NAT is enabled via a GET request that contains a long sequence of / (slash) characters. | 5.0 |
| 2001-08-20 | CVE-2000-1203 | Denial of Service vulnerability in Lotus Domino Mail Loop Lotus Domino SMTP server 4.63 through 5.08 allows remote attackers to cause a denial of service (CPU consumption) by forging an email message with the sender as bounce@[127.0.0.1] (localhost), which causes Domino to enter a mail loop. | 5.0 |