Vulnerabilities > Lotus
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2001-12-06 | CVE-2001-0846 | Unspecified vulnerability in Lotus Domino Lotus Domino 5.x allows remote attackers to read files or execute arbitrary code by requesting the ReplicaID of the Web Administrator template file (webadmin.ntf). | 10.0 |
| 2001-11-30 | CVE-2001-0939 | Denial of Service vulnerability in Lotus Domino SunRPC Lotus Domino 5.08 and earlier allows remote attackers to cause a denial of service (crash) via a SunRPC NULL command to port 443. | 5.0 |
| 2001-09-20 | CVE-2001-1018 | Unspecified vulnerability in Lotus Domino 5.0.8 Lotus Domino web server 5.08 allows remote attackers to determine the internal IP address of the server when NAT is enabled via a GET request that contains a long sequence of / (slash) characters. | 5.0 |
| 2001-08-20 | CVE-2000-1203 | Denial of Service vulnerability in Lotus Domino Mail Loop Lotus Domino SMTP server 4.63 through 5.08 allows remote attackers to cause a denial of service (CPU consumption) by forging an email message with the sender as bounce@[127.0.0.1] (localhost), which causes Domino to enter a mail loop. | 5.0 |
| 2001-08-02 | CVE-2001-0604 | Denial-Of-Service vulnerability in Domino R5 Server Lotus Domino R5 prior to 5.0.7 allows a remote attacker to create a denial of service via URL requests (>8Kb) containing a large number of '/' characters. | 5.0 |
| 2001-08-02 | CVE-2001-0603 | Denial-Of-Service vulnerability in Domino R5 Server Lotus Domino R5 prior to 5.0.7 allows a remote attacker to create a denial of service via repeatedly sending large (> 10Kb) amounts of data to the DIIOP - CORBA service on TCP port 63148. | 5.0 |
| 2001-08-02 | CVE-2001-0602 | Denial-Of-Service vulnerability in Domino R5 Server Lotus Domino R5 prior to 5.0.7 allows a remote attacker to create a denial of service via repeated (>400) URL requests for DOS devices. | 5.0 |
| 2001-08-02 | CVE-2001-0601 | Denial-Of-Service vulnerability in Domino R5 Server Lotus Domino R5 prior to 5.0.7 allows a remote attacker to create a denial of service via HTTP requests containing certain combinations of UNICODE characters. | 5.0 |
| 2001-08-02 | CVE-2001-0600 | Denial-Of-Service vulnerability in Domino R5 Server Lotus Domino R5 prior to 5.0.7 allows a remote attacker to create a denial of service via repeated URL requests with the same HTTP headers, such as (1) Accept, (2) Accept-Charset, (3) Accept-Encoding, (4) Accept-Language, and (5) Content-Type. | 5.0 |
| 2001-07-02 | CVE-2001-1161 | Cross-Site Scripting vulnerability in Lotus Domino R5 Server 5.0.6 Cross-site scripting (CSS) vulnerability in Lotus Domino 5.0.6 allows remote attackers to execute script on other web clients via a URL that ends in Javascript, which generates an error message that does not quote the resulting script. | 7.5 |