Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm lotus domino server 7.0 vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2008-7253
The default configuration of the web server in IBM Lotus Domino Server, possibly 6.0 up to and including 8.0, enables the HTTP TRACE method, which makes it easier for remote malicious users to steal cookies and authentication credentials via a cross-site tracing (XST) attack, a r...
Ibm Lotus Domino Server 6.0
Ibm Lotus Domino Server 8.0
Ibm Lotus Domino Server 7.0
Ibm Lotus Domino Server 6.5
383
VMScore
CVE-2008-2410
Cross-site scripting (XSS) vulnerability in the servlet engine and Web container in the Web Server service in IBM Lotus Domino prior to 7.0.3 FP1, and 8.x prior to 8.0.1, allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
Ibm Lotus Domino Web Server 7.0
Ibm Lotus Domino Web Server 7.0.3
Ibm Lotus Domino Web Server
Ibm Lotus Domino Web Server 7.0.1
Ibm Lotus Domino Web Server 7.0.2
1000
VMScore
CVE-2007-1675
Buffer overflow in the CRAM-MD5 authentication mechanism in the IMAP server (nimap.exe) in IBM Lotus Domino prior to 6.5.6 and 7.x prior to 7.0.2 FP1 allows remote malicious users to cause a denial of service via a long username.
Ibm Lotus Domino 6.5.0
Ibm Lotus Domino 6.5.1
Ibm Lotus Domino 6.5.5
Ibm Lotus Domino 7.0
Ibm Lotus Domino 6.5.4
Ibm Lotus Domino 6.5.2
Ibm Lotus Domino 6.5.3
Ibm Lotus Domino 7.0.1
Ibm Lotus Domino 7.0.2
3 EDB exploits
1000
VMScore
CVE-2008-2240
Stack-based buffer overflow in the Web Server service in IBM Lotus Domino prior to 7.0.3 FP1, and 8.x prior to 8.0.1, allows remote malicious users to cause a denial of service (daemon crash) or possibly execute arbitrary code via a long Accept-Language HTTP header.
Ibm Lotus Domino 6.0
Ibm Lotus Domino 6.5
Ibm Lotus Domino 7.0
Ibm Lotus Domino 8.0
Ibm Lotus Domino 8.0.1
1 EDB exploit
694
VMScore
CVE-2007-0067
Unspecified vulnerability in the Lotus Domino Web Server 6.0, 6.5.x prior to 6.5.6, and 7.0.x prior to 7.0.3 allows remote malicious users to cause a denial of service (daemon crash) via requests for URLs that reference certain files.
Ibm Lotus Domino Web Server 6.0
Ibm Lotus Domino Web Server 6.0.1
Ibm Lotus Domino Web Server 6.5.1
Ibm Lotus Domino Web Server 6.5.2
Ibm Lotus Domino Web Server 7.0
Ibm Lotus Domino Web Server 7.0.1
Ibm Lotus Domino Web Server 6.0.3
Ibm Lotus Domino Web Server 6.0.4
Ibm Lotus Domino Web Server 6.5.4
Ibm Lotus Domino Web Server 6.5.5
Ibm Lotus Domino Web Server 6.0.2
Ibm Lotus Domino Web Server 6.0.2 Cf2
Ibm Lotus Domino Web Server 6.5.3
Ibm Lotus Domino Web Server 7.0.2
Ibm Lotus Domino Web Server 6.0.5
Ibm Lotus Domino Web Server 6.5.0
1000
VMScore
CVE-2011-1519
The remote console in the Server Controller in IBM Lotus Domino 7.x and 8.x verifies credentials against a file located at a UNC share pathname specified by the client, which allows remote malicious users to bypass authentication, and consequently execute arbitrary code, by placi...
Ibm Lotus Domino 7.0.2.3
Ibm Lotus Domino 7.0.3.1
Ibm Lotus Domino 7.0.4.1
Ibm Lotus Domino 7.0.4.2
Ibm Lotus Domino 7.0.1.1
Ibm Lotus Domino 7.0.2
Ibm Lotus Domino 7.0.1
Ibm Lotus Domino 7.0.2.1
Ibm Lotus Domino 7.0
Ibm Lotus Domino 7.0.2.2
Ibm Lotus Domino 7.0.3
Ibm Lotus Domino 7.0.4
Ibm Lotus Domino 8.5.1.3
Ibm Lotus Domino 8.0.1
Ibm Lotus Domino 8.5.1
Ibm Lotus Domino 8.5.2
Ibm Lotus Domino 8.5.3
Ibm Lotus Domino 8.0.2
Ibm Lotus Domino 8.0.2.6
Ibm Lotus Domino 8.0.2.3
Ibm Lotus Domino 8.5.1.4
Ibm Lotus Domino 8.5.1.1
1 EDB exploit
383
VMScore
CVE-2007-5924
Cross-site scripting (XSS) vulnerability in the Web Server (HTTP) task in IBM Lotus Domino prior to 6.5.6 FP2, and 7.x prior to 7.0.2 FP2, allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
Ibm Lotus Domino 7.0.2
Ibm Lotus Domino
Ibm Lotus Domino 7.0
828
VMScore
CVE-2007-0068
IBM Lotus Domino 7.0.x prior to 7.0.3 does not revalidate the signature on a signed scheduled agent after the agent is modified, which allows remote authenticated users to gain privileges via a modified agent in a server database.
Ibm Lotus Domino 7.0
Ibm Lotus Domino 7.0.1
Ibm Lotus Domino 7.0.2
694
VMScore
CVE-2007-1739
Heap-based buffer overflow in the LDAP server in IBM Lotus Domino prior to 6.5.6 and 7.x prior to 7.0.2 FP1 allows remote malicious users to cause a denial of service (crash) via a long, malformed DN request, which causes only the lower 16 bits of the string length to be used in ...
Ibm Lotus Domino 7.0.2
Ibm Lotus Domino 7.0
Ibm Lotus Domino 7.0.1
694
VMScore
CVE-2005-2712
The LDAP server (nldap.exe) in IBM Lotus Domino prior to 7.0.1, 6.5.5, and 6.5.4 FP2 allows remote malicious users to cause a denial of service (crash) via a long bind request, which triggers a null dereference.
Ibm Lotus Domino 6.0.2.1
Ibm Lotus Domino 6.0.2.2
Ibm Lotus Domino 6.5.3
Ibm Lotus Domino 6.5.3.1
Ibm Lotus Domino 6.0
Ibm Lotus Domino 6.0.3
Ibm Lotus Domino 6.0.4
Ibm Lotus Domino 6.5.4
Ibm Lotus Domino 7.0
Ibm Lotus Domino 6.0.1
Ibm Lotus Domino 6.0.1.1
Ibm Lotus Domino 6.0.5
Ibm Lotus Domino 6.5
Ibm Lotus Domino 6.0.1.2
Ibm Lotus Domino 6.0.1.3
Ibm Lotus Domino 6.5.1
Ibm Lotus Domino 6.5.2
Ibm Lotus Domino 6.5.2.1
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »