Vulnerabilities > Lotus > Domino > 5.0.9
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2002-12-31 | CVE-2002-2191 | Information Disclosure vulnerability in Lotus Domino Non-existent NSF Database Banner Lotus Domino 5.0.9a and earlier, even when configured with the 'DominoNoBanner=1' option, allows remote attackers to obtain potential sensitive information such as the version via a request for a non-existent .nsf database, which leaks the version in the HTTP banner. | 5.0 |
2002-05-29 | CVE-2002-0245 | Information Disclosure vulnerability in Lotus Domino Banner Lotus Domino server 5.0.8 with NoBanner enabled allows remote attackers to (1) determine the physical path of the server via a request for a nonexistent file with a .pl (Perl) extension, which leaks the pathname in the error message, or (2) make any request that causes an HTTP 500 error, which leaks the server's version name in the HTTP error message. | 7.5 |