MidnightBSD

Advisories for lotus

CVE-1999-1012 MEDIUM

SMTP component of Lotus Domino 4.6.1 on AS/400, and possibly other operating systems, allows a remote attacker to crash the mail server via a long string.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
lotus domino 4.6.1
CVE-2000-0021 MEDIUM

Lotus Domino HTTP server allows remote attackers to determine the real path of the server via a request to a non-existent script in /cgi-bin.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
lotus domino_server 4.6
CVE-2000-0022 MEDIUM

Lotus Domino HTTP server does not properly disable anonymous access for the cgi-bin directory.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
lotus domino_server 4.6.x
lotus domino_server 4.6
CVE-2000-0023 MEDIUM

Buffer overflow in Lotus Domino HTTP server allows remote attackers to cause a denial of service via a long URL.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
lotus domino_server 4.6.x
lotus domino_server 4.6
CVE-2000-0452 MEDIUM

Buffer overflow in the ESMTP service of Lotus Domino Server 5.0.1 allows remote attackers to cause a denial of service via a long MAIL FROM command.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
lotus domino_enterprise_server 5.0.1
lotus domino_mail_server 5.0.1
lotus domino_enterprise_server 5.0.3
lotus domino_enterprise_server 5.0.2
lotus domino_mail_server 5.0.2
lotus domino_mail_server 5.0.3
CVE-2000-1046 HIGH

Multiple buffer overflows in the ESMTP service of Lotus Domino 5.0.2c and earlier allow remote attackers to cause a denial of service and possibly execute arbitrary code via long (1) "RCPT TO," (2) "SAML FROM," or (3) "SOML FROM" commands.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
lotus domino 5.0.2c
lotus domino 5.0.2a
CVE-2000-1047 HIGH

Buffer overflow in SMTP service of Lotus Domino 5.0.4 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long ENVID keyword in the "MAIL FROM" command.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
lotus domino_enterprise_server 5.0.4
lotus domino_mail_server 5.0.4
lotus domino_enterprise_server 5.0.1
lotus domino_mail_server 5.0.1
lotus domino_enterprise_server 5.0.2b
lotus domino_mail_server 5.0.2b
lotus domino_enterprise_server 5.0.3
lotus domino_enterprise_server 5.0.2
lotus domino_mail_server 5.0.2
lotus domino_mail_server 5.0.3
CVE-2000-1203 MEDIUM

Lotus Domino SMTP server 4.63 through 5.08 allows remote attackers to cause a denial of service (CPU consumption) by forging an email message with the sender as bounce@[127.0.0.1] (localhost), which causes Domino to enter a mail loop.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
lotus domino 4.6.3
lotus domino 5.0.8
lotus domino 4.6.1
lotus domino 5.0.1
lotus domino 5.0.6
lotus domino 5.0.3
lotus domino 5.0.7
lotus domino 4.6.4
lotus domino 5.0.5
lotus domino 5.0.4
lotus domino 5.0.2
CVE-2001-0009 MEDIUM

Directory traversal vulnerability in Lotus Domino 5.0.5 web server allows remote attackers to read arbitrary files via a .. attack.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
lotus domino_server 5.0.3
lotus domino_server 5.0.6
lotus domino_server 5.0.2
lotus domino_server 5.0.5
CVE-2001-0130 HIGH

Buffer overflow in HTML parser of the Lotus R5 Domino Server before 5.06, and Domino Client before 5.05, allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a malformed font size specifier.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
lotus domino_r5_server 5.04
lotus domino_r5_client 5.04
lotus domino_r5_server 5.06
lotus domino_r5_server 5.05
lotus domino_r5_client 5.05
CVE-2001-0260 HIGH

Buffer overflow in Lotus Domino Mail Server 5.0.5 and earlier allows a remote attacker to crash the server or execute arbitrary code via a long "RCPT TO" command.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
lotus domino_mail_server *
CVE-2001-0600 MEDIUM

Lotus Domino R5 prior to 5.0.7 allows a remote attacker to create a denial of service via repeated URL requests with the same HTTP headers, such as (1) Accept, (2) Accept-Charset, (3) Accept-Encoding, (4) Accept-Language, and (5) Content-Type.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
lotus domino_r5_server *
CVE-2001-0601 MEDIUM

Lotus Domino R5 prior to 5.0.7 allows a remote attacker to create a denial of service via HTTP requests containing certain combinations of UNICODE characters.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
lotus domino_r5_server *
CVE-2001-0602 MEDIUM

Lotus Domino R5 prior to 5.0.7 allows a remote attacker to create a denial of service via repeated (>400) URL requests for DOS devices.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
lotus domino_r5_server *
CVE-2001-0603 MEDIUM

Lotus Domino R5 prior to 5.0.7 allows a remote attacker to create a denial of service via repeatedly sending large (> 10Kb) amounts of data to the DIIOP - CORBA service on TCP port 63148.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
lotus domino_r5_server *
CVE-2001-0604 MEDIUM

Lotus Domino R5 prior to 5.0.7 allows a remote attacker to create a denial of service via URL requests (>8Kb) containing a large number of '/' characters.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
lotus domino_r5_server *
CVE-2001-0846 HIGH

Lotus Domino 5.x allows remote attackers to read files or execute arbitrary code by requesting the ReplicaID of the Web Administrator template file (webadmin.ntf).

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
lotus domino 5.0.8
lotus domino 5.0.6
lotus domino 5.0.7
lotus domino 5.0.5
lotus domino 5.0.4
lotus domino 5.0.2
lotus domino 5.0
lotus domino 5.0.6a
lotus domino 5.0.1
lotus domino 5.0.2c
lotus domino 5.0.3
lotus domino 5.0.2a
lotus domino 5.0.4a
lotus domino 5.0.7a
CVE-2001-0847 HIGH

Lotus Domino Web Server 5.x allows remote attackers to gain sensitive information by accessing the default navigator $defaultNav via (1) URL encoding the request, or (2) directly requesting the ReplicaID.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
lotus domino_web_server 5.x
CVE-2001-0939 MEDIUM

Lotus Domino 5.08 and earlier allows remote attackers to cause a denial of service (crash) via a SunRPC NULL command to port 443.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
lotus domino 5.0.8
lotus domino 5.0.1
lotus domino 5.0.6
lotus domino 5.0.3
lotus domino 5.0.7
lotus domino 5.0.5
lotus domino 5.0.4
lotus domino 5.0.2
lotus domino 5.0
CVE-2001-0954 MEDIUM

Lotus Domino 5.0.5 and 5.0.8, and possibly other versions, allows remote attackers to cause a denial of service (block access to databases that have not been previously accessed) via a URL that includes the . (dot) directory.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
lotus domino 5.0.8
lotus domino 5.0.5
CVE-2001-1018 MEDIUM

Lotus Domino web server 5.08 allows remote attackers to determine the internal IP address of the server when NAT is enabled via a GET request that contains a long sequence of / (slash) characters.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
lotus domino 5.0.8
CVE-2001-1161 HIGH

Cross-site scripting (CSS) vulnerability in Lotus Domino 5.0.6 allows remote attackers to execute script on other web clients via a URL that ends in Javascript, which generates an error message that does not quote the resulting script.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
lotus domino_r5_server 5.0.6
CVE-2001-1445 HIGH

Unknown vulnerability in the SMTP server in Lotus Domino 5.0 through 5.7 allows remote attackers to bypass mail relaying restrictions via crafted e-mail addresses in "RCPT TO" commands.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
lotus domino_mail_server 5.0.4
lotus domino_mail_server 5.0.1
lotus domino_mail_server 5.0.6
lotus domino_mail_server 5.0.2b
lotus domino_mail_server 5.0.0
lotus domino_mail_server 5.0.7
lotus domino_mail_server 5.0.2
lotus domino_mail_server 5.0.3
lotus domino_mail_server 5.0.5
CVE-2002-0087 LOW

bindsock in Lotus Domino 5.07 on Solaris allows local users to create arbitrary files via a symlink attack on temporary files.

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
lotus domino 5.0.7
CVE-2002-0245 HIGH

Lotus Domino server 5.0.8 with NoBanner enabled allows remote attackers to (1) determine the physical path of the server via a request for a nonexistent file with a .pl (Perl) extension, which leaks the pathname in the error message, or (2) make any request that causes an HTTP 500 error, which leaks the server's version name in the HTTP error message.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
lotus domino 5.0.8
lotus domino 5.0.6
lotus domino 5.0.7
lotus domino 5.0.5
lotus domino 5.0.4
lotus domino 5.0.2
lotus domino 5.0
lotus domino 5.0.6a
lotus domino 5.0.1
lotus domino 5.0.3
lotus domino 5.0.4a
lotus domino 5.0.7a
lotus domino 5.0.9
CVE-2002-0407 MEDIUM

htcgibin.exe in Lotus Domino server 5.0.9a and earlier allows remote attackers to determine the physical pathname for the server via requests that contain certain MS-DOS device names such as com5, such as (1) a request with a .pl or .java extension, or (2) a request containing a large number of periods, which causes htcgibin.exe to leak the pathname in an error message.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
lotus domino *
CVE-2002-0408 MEDIUM

htcgibin.exe in Lotus Domino server 5.0.9a and earlier, when configured with the NoBanner setting, allows remote attackers to determine the version number of the server via a request that generates an HTTP 500 error code, which leaks the version in a hard-coded error message.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
lotus domino *
CVE-2002-1010 HIGH

Lotus Domino R4 allows remote attackers to bypass access restrictions for files in the web root via an HTTP request appended with a "?" character, which is treated as a wildcard character and bypasses the web handlers.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
lotus domino_r4 *
CVE-2002-2191 MEDIUM

Lotus Domino 5.0.9a and earlier, even when configured with the 'DominoNoBanner=1' option, allows remote attackers to obtain potential sensitive information such as the version via a request for a non-existent .nsf database, which leaks the version in the HTTP banner.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
lotus domino 5.0.8
lotus domino 5.0.9a
lotus domino 5.0.9
CVE-2003-1408 MEDIUM

Lotus Domino Server 5.0 and 6.0 allows remote attackers to read the source code for files via an HTTP request with a filename with a trailing dot.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
lotus domino_server 6.0
lotus domino_server 5.0