CVSS: 6.1EPSS: 0%CPEs: 2EXPL: 2CVE-2005-3015
https://notcve.org/view.php?id=CVE-2005-3015
21 Sep 2005 — Cross-site scripting (XSS) vulnerability in IBM Lotus Domino 6.5.2 allows remote attackers to inject arbitrary web script or HTML via the (1) BaseTarget or (2) Src parameters. • http://secunia.com/advisories/16830 •
CVSS: 9.8EPSS: 4%CPEs: 2EXPL: 0CVE-2005-1101
https://notcve.org/view.php?id=CVE-2005-1101
13 Apr 2005 — Multiple buffer overflows in Lotus Domino Server 6.0.5 and 6.5.4 allow remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via large amounts of data in certain (1) time or (2) date fields. • http://marc.info/?l=bugtraq&m=111335285121320&w=2 •
CVSS: 7.5EPSS: 15%CPEs: 2EXPL: 1CVE-2005-0986 – IBM Lotus Domino Server 6.5.1 Web Service - Remote Denial of Service
https://notcve.org/view.php?id=CVE-2005-0986
06 Apr 2005 — NLSCCSTR.DLL in the web service in IBM Lotus Domino Server 6.5.1, 6.0.3, and possibly other versions allows remote attackers to cause a denial of service (deep recursion and nHTTP.exe process crash) via a long GET request containing UNICODE decimal value 430 characters, which causes the stack to be exhausted. NOTE: IBM has reported that it is unable to replicate this issue. • https://www.exploit-db.com/exploits/25353 •
CVSS: 10.0EPSS: 58%CPEs: 1EXPL: 0CVE-2003-0178
https://notcve.org/view.php?id=CVE-2003-0178
29 Mar 2003 — Multiple buffer overflows in Lotus Domino Web Server before 6.0.1 allow remote attackers to cause a denial of service or execute arbitrary code via (1) the s_ViewName option in the PresetFields parameter for iNotes, (2) the Foldername option in the PresetFields parameter for iNotes, or (3) a long Host header, which is inserted into a long Location header and used during a redirect operation. Multiples desbordamiento de búfer en Lotus Domino Web Server anteriores a la 6.0.1 permiten a atacantes remotos causa... • http://archives.neohapsis.com/archives/vulnwatch/2003-q1/0080.html •
CVSS: 9.8EPSS: 35%CPEs: 2EXPL: 0CVE-2003-0179
https://notcve.org/view.php?id=CVE-2003-0179
29 Mar 2003 — Buffer overflow in the COM Object Control Handler for Lotus Domino 6.0.1 and earlier allows remote attackers to execute arbitrary code via multiple attack vectors, as demonstrated using the InitializeUsingNotesUserName method in the iNotes ActiveX control. Desbordamiento de búfer en el manejador de control de objetos COM para Lotus Domino 6.0.1 y versiones anteriores, permite a atacantes remotos la ejecución de código arbitrario mediante vectores de ataque múltiple, como se demuestra utilizando el método In... • http://archives.neohapsis.com/archives/vulnwatch/2003-q1/0082.html •
CVSS: 7.5EPSS: 10%CPEs: 1EXPL: 1CVE-2003-0180
https://notcve.org/view.php?id=CVE-2003-0180
29 Mar 2003 — Lotus Domino Web Server (nhttp.exe) before 6.0.1 allows remote attackers to cause a denial of service via an incomplete POST request, as demonstrated using the h_PageUI form. Lotus Domino Web Server (nhttp.exe) anteriores a la 6.0.1 permite a atacantes remotos causar la Denegación de Servicios mediante una petición POST incompleta, como se demuestra utilizando el formulario h_PageUI. • http://archives.neohapsis.com/archives/vulnwatch/2003-q1/0086.html •
CVSS: 7.5EPSS: 2%CPEs: 1EXPL: 1CVE-2003-0181
https://notcve.org/view.php?id=CVE-2003-0181
29 Mar 2003 — Lotus Domino Web Server (nhttp.exe) before 6.0.1 allows remote attackers to cause a denial of service via a "Fictionary Value Field POST request" as demonstrated using the s_Validation form with a long, unknown parameter name. • http://archives.neohapsis.com/archives/vulnwatch/2003-q1/0086.html •
CVSS: 7.5EPSS: 1%CPEs: 14EXPL: 0CVE-2002-2025
https://notcve.org/view.php?id=CVE-2002-2025
31 Dec 2002 — Lotus Domino server 5.0.9a and earlier allows remote attackers to cause a denial of service by exhausting the number of working threads via a large number of HTTP requests for (1) an MS-DOS device name and (2) an MS-DOS device name with a large number of characters appended to the device name. • http://archives.neohapsis.com/archives/vulnwatch/2002-q1/0037.html •
CVSS: 9.1EPSS: 0%CPEs: 3EXPL: 0CVE-2002-0037
https://notcve.org/view.php?id=CVE-2002-0037
12 Apr 2002 — Lotus Domino Servers 5.x, 4.6x, and 4.5x allows attackers to bypass the intended Reader and Author access list for a document's object via a Notes API call (NSFDbReadObject) that directly accesses the object. Los servidores Lotus Domino 5.x, 4.6x y 4.5x permiten a atacantes evadir la lista acceso de autores y lectores de un objeto mediante una llamada a la API (interfaz de programación) de Notes que accede directamente al objeto. • http://archives.neohapsis.com/archives/bugtraq/2001-09/0147.html •
CVSS: 9.1EPSS: 0%CPEs: 12EXPL: 0CVE-2001-1567
https://notcve.org/view.php?id=CVE-2001-1567
31 Dec 2001 — Lotus Domino server 5.0.9a and earlier allows remote attackers to bypass security restrictions and view Notes database files and possibly sensitive Notes template files (.ntf) via an HTTP request with a large number of "+" characters before the .nsf file extension, which are converted to spaces by Domino. • http://marc.info/?l=bugtraq&m=101284222932568&w=2 •