CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2004-0669
https://notcve.org/view.php?id=CVE-2004-0669
13 Jul 2004 — Lotus Domino 6.5.0 and 6.5.1, with IMAP enabled, allows remote authenticated users to change their quota by using the IMAP setquota command. • http://marc.info/?l=bugtraq&m=108869022708571&w=2 •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2004-0029
https://notcve.org/view.php?id=CVE-2004-0029
08 Jan 2004 — Lotus Notes Domino 6.0.2 on Linux installs the notes.ini configuration file with world-writable permissions, which allows local users to modify the Notes configuration and gain privileges. Lotus Notes Domino 6.0.2 para Linux instala el fichero de configuración notes.ini con permisos de escritura para todo el mundo, lo que permite a usuarios locales modificar la configuración de Notes y ganar privilegios. • http://marc.info/?l=bugtraq&m=107340897710308&w=2 •
CVSS: 9.8EPSS: 26%CPEs: 29EXPL: 0CVE-2003-0122
https://notcve.org/view.php?id=CVE-2003-0122
18 Mar 2003 — Buffer overflow in Notes server before Lotus Notes R4, R5 before 5.0.11, and early R6 allows remote attackers to execute arbitrary code via a long distinguished name (DN) during NotesRPC authentication and an outer field length that is less than that of the DN field. Desbordamiento de búfer en el servidor de Lotus Notes R4, R5 anteriores a 5.0.11 y betas de R6 permite a atacantes remotos ejecutar código arbitrario mediante un nombre distinguido (DN) largo durante la autenticación NotesRPC y una longitud ext... • http://archives.neohapsis.com/archives/vulnwatch/2003-q1/0125.html •
CVSS: 7.5EPSS: 4%CPEs: 30EXPL: 0CVE-2003-0123
https://notcve.org/view.php?id=CVE-2003-0123
18 Mar 2003 — Buffer overflow in Web Retriever client for Lotus Notes/Domino R4.5 through R6 allows remote malicious web servers to cause a denial of service (crash) via a long HTTP status line. Desbordamiento de búfer en el cliente Web Retriever de Lotus Notes/Domino R4.5 a R.6 permite a servidores web remotos maliciosos causar una denegación de servicio (caída) mediante una línea de estado HTTP larga. • http://marc.info/?l=bugtraq&m=104757545500368&w=2 •
CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 2CVE-2002-2014
https://notcve.org/view.php?id=CVE-2002-2014
31 Dec 2002 — Lotus Domino 5.0.8 web server returns different error messages when a valid or invalid user is provided in HTTP requests, which allows remote attackers to determine valid user names and makes it easier to conduct brute force attacks. • http://archives.neohapsis.com/archives/bugtraq/2002-01/0373.html •
CVSS: 9.8EPSS: 3%CPEs: 14EXPL: 0CVE-2002-1624
https://notcve.org/view.php?id=CVE-2002-1624
31 Dec 2002 — Buffer overflow in Lotus Domino web server before R5.0.10, when logging to DOMLOG.NSF, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long HTTP Authenticate header containing certain non-ASCII characters. • http://securitytracker.com/id?1004052 •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2002-0086
https://notcve.org/view.php?id=CVE-2002-0086
07 Mar 2002 — Buffer overflow in bindsock in Lotus Domino 5.0.4 and 5.0.7 on Linux allows local users to gain root privileges via a long (1) Notes_ExecDirectory or (2) PATH environment variable. Desbordamiento de buffer en bindsock en Lotus Domino 5.0.4 a 5.0.7 en Linux permite a usuarios locales ganar privilegios de root mediante Notes_ExecDirectoryVariable de entorno PATHlargos. • http://www-1.ibm.com/support/docview.wss?uid=swg21095569 •
CVSS: 9.1EPSS: 0%CPEs: 12EXPL: 0CVE-2001-1567
https://notcve.org/view.php?id=CVE-2001-1567
31 Dec 2001 — Lotus Domino server 5.0.9a and earlier allows remote attackers to bypass security restrictions and view Notes database files and possibly sensitive Notes template files (.ntf) via an HTTP request with a large number of "+" characters before the .nsf file extension, which are converted to spaces by Domino. • http://marc.info/?l=bugtraq&m=101284222932568&w=2 •
CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 0CVE-2000-1215
https://notcve.org/view.php?id=CVE-2000-1215
19 Sep 2001 — The default configuration of Lotus Domino server 5.0.8 includes system information (version, operating system, and build date) in the HTTP headers of replies, which allows remote attackers to obtain sensitive information. • http://marc.info/?l=bugtraq&m=100094373621813&w=2 •