Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
lotus domino vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2008-2499
Stack-based buffer overflow in the Community Services Multiplexer (aka MUX or StMux.exe) in IBM Lotus Sametime 7.5.1 CF1 and previous versions, and 8.x prior to 8.0.1, allows remote malicious users to execute arbitrary code via a crafted URL.
Ibm Lotus Sametime 7.5.1
Ibm Lotus Sametime
2 EDB exploits
7.5
CVSSv2
CVE-2006-4763
IBM Lotus Domino Web Access (DWA) 7.0.1 does not expire a client's Lightweight Third-Party Authentication token (LtpaToken) upon logout, which allows remote malicious users to obtain a user's privileges by intercepting the LtpaToken cookie.
Ibm Lotus Domino Web Access 7.0.1
7.5
CVSSv2
CVE-2005-1101
Multiple buffer overflows in Lotus Domino Server 6.0.5 and 6.5.4 allow remote malicious users to cause a denial of service (application crash) and possibly execute arbitrary code via large amounts of data in certain (1) time or (2) date fields.
Ibm Lotus Domino Server 6.0.5
Ibm Lotus Domino Server 6.5.4
7.5
CVSSv2
CVE-2004-0669
Lotus Domino 6.5.0 and 6.5.1, with IMAP enabled, allows remote authenticated users to change their quota by using the IMAP setquota command.
Ibm Lotus Domino 6.5.0
Ibm Lotus Domino 6.5.1
7.5
CVSSv2
CVE-2003-0179
Buffer overflow in the COM Object Control Handler for Lotus Domino 6.0.1 and previous versions allows remote malicious users to execute arbitrary code via multiple attack vectors, as demonstrated using the InitializeUsingNotesUserName method in the iNotes ActiveX control.
Ibm Lotus Domino Web Server 6.0
Ibm Lotus Notes Client 6.0
7.5
CVSSv2
CVE-2002-1010
Lotus Domino R4 allows remote malicious users to bypass access restrictions for files in the web root via an HTTP request appended with a "?" character, which is treated as a wildcard character and bypasses the web handlers.
Lotus Domino R4
7.5
CVSSv2
CVE-2002-0245
Lotus Domino server 5.0.8 with NoBanner enabled allows remote malicious users to (1) determine the physical path of the server via a request for a nonexistent file with a .pl (Perl) extension, which leaks the pathname in the error message, or (2) make any request that causes an H...
Lotus Domino 5.0.5
Lotus Domino 5.0.6
Lotus Domino 5.0.1
Lotus Domino 5.0.2
Lotus Domino 5.0.3
Lotus Domino 5.0.7a
Lotus Domino 5.0.8
Lotus Domino 5.0.4
Lotus Domino 5.0.4a
Lotus Domino 5.0.9
Lotus Domino 5.0
Lotus Domino 5.0.6a
Lotus Domino 5.0.7
7.5
CVSSv2
CVE-2002-0037
Lotus Domino Servers 5.x, 4.6x, and 4.5x allows malicious users to bypass the intended Reader and Author access list for a document's object via a Notes API call (NSFDbReadObject) that directly accesses the object.
Ibm Lotus Domino Server 4.6
Ibm Lotus Domino Server 4.5
Ibm Lotus Domino Server 5
7.5
CVSSv2
CVE-2001-0847
Lotus Domino Web Server 5.x allows remote malicious users to gain sensitive information by accessing the default navigator $defaultNav via (1) URL encoding the request, or (2) directly requesting the ReplicaID.
Lotus Domino Web Server 5.x
7.5
CVSSv2
CVE-2001-1311
Buffer overflows in Lotus Domino R5 before R5.0.7a allow remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code, as demonstrated by the PROTOS LDAPv3 test suite.
Ibm Lotus Domino R5
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3581
reflected XSS
CVE-2024-26925
CVE-2024-27956
LFI
CVE-2024-3607
CVE-2024-3107
CVE-2024-3295
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »