CVSS: 4.3EPSS: 0%CPEs: 2EXPL: 2CVE-2005-3015
https://notcve.org/view.php?id=CVE-2005-3015
Cross-site scripting (XSS) vulnerability in IBM Lotus Domino 6.5.2 allows remote attackers to inject arbitrary web script or HTML via the (1) BaseTarget or (2) Src parameters. • http://secunia.com/advisories/16830 http://www-1.ibm.com/support/docview.wss?rs=0&uid=swg1LO07849&loc=en_US&cs=utf-8&cc=us&lang=all http://www-1.ibm.com/support/docview.wss?uid=swg1LO07850 http://www.securityfocus.com/bid/14845 http://www.securityfocus.com/bid/14846 •
CVSS: 7.5EPSS: 2%CPEs: 2EXPL: 0CVE-2005-1101
https://notcve.org/view.php?id=CVE-2005-1101
Multiple buffer overflows in Lotus Domino Server 6.0.5 and 6.5.4 allow remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via large amounts of data in certain (1) time or (2) date fields. • http://marc.info/?l=bugtraq&m=111335285121320&w=2 http://secunia.com/advisories/14879 http://www-1.ibm.com/support/docview.wss?rs=463&uid=swg21202431 http://www.ngssoftware.com/advisories/lotus-01.txt http://www.osvdb.org/15364 https://exchange.xforce.ibmcloud.com/vulnerabilities/20042 •
CVSS: 5.0EPSS: 91%CPEs: 2EXPL: 1CVE-2005-0986 – IBM Lotus Domino Server 6.5.1 Web Service - Remote Denial of Service
https://notcve.org/view.php?id=CVE-2005-0986
NLSCCSTR.DLL in the web service in IBM Lotus Domino Server 6.5.1, 6.0.3, and possibly other versions allows remote attackers to cause a denial of service (deep recursion and nHTTP.exe process crash) via a long GET request containing UNICODE decimal value 430 characters, which causes the stack to be exhausted. NOTE: IBM has reported that it is unable to replicate this issue. • https://www.exploit-db.com/exploits/25353 http://news.zdnet.co.uk/software/applications/0%2C39020384%2C39194293%2C00.htm http://secunia.com/advisories/14858 http://www-1.ibm.com/support/docview.wss?uid=swg21202446 http://www.idefense.com/application/poi/display?id=224&type=vulnerabilities http://www.vupen.com/english/advisories/2005/0322 •
CVSS: 5.0EPSS: 0%CPEs: 1EXPL: 1CVE-2003-0180
https://notcve.org/view.php?id=CVE-2003-0180
Lotus Domino Web Server (nhttp.exe) before 6.0.1 allows remote attackers to cause a denial of service via an incomplete POST request, as demonstrated using the h_PageUI form. Lotus Domino Web Server (nhttp.exe) anteriores a la 6.0.1 permite a atacantes remotos causar la Denegación de Servicios mediante una petición POST incompleta, como se demuestra utilizando el formulario h_PageUI. • http://archives.neohapsis.com/archives/vulnwatch/2003-q1/0086.html http://www-1.ibm.com/support/docview.wss?uid=swg21104528 http://www.cert.org/advisories/CA-2003-11.html http://www.ciac.org/ciac/bulletins/n-065.shtml http://www.kb.cert.org/vuls/id/355169 http://www.nextgenss.com/advisories/lotus-60dos.txt http://www.securityfocus.com/bid/6951 https://exchange.xforce.ibmcloud.com/vulnerabilities/11360 •
CVSS: 5.0EPSS: 0%CPEs: 1EXPL: 1CVE-2003-0181
https://notcve.org/view.php?id=CVE-2003-0181
Lotus Domino Web Server (nhttp.exe) before 6.0.1 allows remote attackers to cause a denial of service via a "Fictionary Value Field POST request" as demonstrated using the s_Validation form with a long, unknown parameter name. • http://archives.neohapsis.com/archives/vulnwatch/2003-q1/0086.html http://www-1.ibm.com/support/docview.wss?uid=swg21104528 http://www.cert.org/advisories/CA-2003-11.html http://www.nextgenss.com/advisories/lotus-60dos.txt http://www.securityfocus.com/bid/6951 https://exchange.xforce.ibmcloud.com/vulnerabilities/11361 •