CVSS: 7.5EPSS: 4%CPEs: 30EXPL: 0CVE-2003-0123
https://notcve.org/view.php?id=CVE-2003-0123
18 Mar 2003 — Buffer overflow in Web Retriever client for Lotus Notes/Domino R4.5 through R6 allows remote malicious web servers to cause a denial of service (crash) via a long HTTP status line. Desbordamiento de búfer en el cliente Web Retriever de Lotus Notes/Domino R4.5 a R.6 permite a servidores web remotos maliciosos causar una denegación de servicio (caída) mediante una línea de estado HTTP larga. • http://marc.info/?l=bugtraq&m=104757545500368&w=2 •
CVSS: 8.4EPSS: 30%CPEs: 20EXPL: 0CVE-2002-0370
https://notcve.org/view.php?id=CVE-2002-0370
05 Oct 2002 — Buffer overflow in the ZIP capability for multiple products allows remote attackers to cause a denial of service or execute arbitrary code via ZIP files containing entries with long filenames, including (1) Microsoft Windows 98 with Plus! Pack, (2) Windows XP, (3) Windows ME, (4) Lotus Notes R4 through R6 (pre-gold), (5) Verity KeyView, and (6) Stuffit Expander before 7.0. Desbordamiento de búfer en la capacidad ZIP de múltiples productos permite a atacantes remotos causar una denegación de servicio o ejecu... • http://archives.neohapsis.com/archives/vulnwatch/2002-q4/0009.html •
CVSS: 9.8EPSS: 3%CPEs: 2EXPL: 0CVE-2001-1504
https://notcve.org/view.php?id=CVE-2001-1504
31 Dec 2001 — Lotus Notes R5 Client 4.6 allows remote attackers to execute arbitrary commands via a Lotus Notes object with code in an event, which is automatically executed when the user processes the e-mail message. • http://www.securityfocus.com/archive/1/221986 •
CVSS: 9.8EPSS: 3%CPEs: 1EXPL: 1CVE-2000-0891
https://notcve.org/view.php?id=CVE-2000-0891
21 Jul 2001 — A default ECL in Lotus Notes before 5.02 allows remote attackers to execute arbitrary commands by attaching a malicious program in an email message that is automatically executed when the user opens the email. • http://www.kb.cert.org/vuls/id/5962 •
CVSS: 7.5EPSS: 0%CPEs: 6EXPL: 0CVE-2000-1138
https://notcve.org/view.php?id=CVE-2000-1138
19 Dec 2000 — Lotus Notes R5 client R5.0.5 and earlier does not properly warn users when an S/MIME email message has been modified, which could allow an attacker to modify the email in transit without being detected. • http://marc.info/?l=bugtraq&m=97370725220953&w=2 •
CVSS: 9.1EPSS: 1%CPEs: 1EXPL: 1CVE-2000-1117
https://notcve.org/view.php?id=CVE-2000-1117
19 Dec 2000 — The Extended Control List (ECL) feature of the Java Virtual Machine (JVM) in Lotus Notes Client R5 allows malicious web site operators to determine the existence of files on the client by measuring delays in the execution of the getSystemResource method. • http://archives.neohapsis.com/archives/bugtraq/2000-11/0341.html • CWE-203: Observable Discrepancy •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-1999-0429
https://notcve.org/view.php?id=CVE-1999-0429
01 Mar 1999 — The Lotus Notes 4.5 client may send a copy of encrypted mail in the clear across the network if the user does not set the "Encrypt Saved Mail" preference. • http://marc.info/?l=bugtraq&m=92221437025743&w=2 •