Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm lotus notes vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2000-1117
The Extended Control List (ECL) feature of the Java Virtual Machine (JVM) in Lotus Notes Client R5 allows malicious web site operators to determine the existence of files on the client by measuring delays in the execution of the getSystemResource method.
Ibm Lotus Notes R5
7.5
CVSSv2
CVE-1999-0429
The Lotus Notes 4.5 client may send a copy of encrypted mail in the clear across the network if the user does not set the "Encrypt Saved Mail" preference.
Ibm Lotus Notes 4.5
7.5
CVSSv2
CVE-2009-3114
The RSS reader widget in IBM Lotus Notes 8.0 and 8.5 saves items from an RSS feed as local HTML documents, which allows remote malicious users to execute arbitrary script in Internet Explorer's Local Machine Zone via a crafted feed, aka SPR RGAU7RDJ9K.
Ibm Lotus Notes 8.5
6.9
CVSSv2
CVE-2010-5251
Multiple untrusted search path vulnerabilities in IBM Lotus Notes 8.5 allow local users to gain privileges via a Trojan horse (1) nnoteswc.dll or (2) nlsxbe.dll file in the current working directory, as demonstrated by a directory that contains a .vcf, .vcs, or .ics file. NOTE: t...
Ibm Lotus Notes 8.5
9.3
CVSSv2
CVE-2008-4564
Stack-based buffer overflow in wp6sr.dll in the Autonomy KeyView SDK 10.4 and previous versions, as used in IBM Lotus Notes, Symantec Mail Security (SMS) products, Symantec BrightMail Appliance products, and Symantec Data Loss Prevention (DLP) products, allows remote malicious us...
Symantec Mail Security 7.5.3.25
Symantec Mail Security 5.0.11
Symantec Mail Security 5.0.10
Symantec Mail Security 6.0.7
Symantec Mail Security 5.0.1
Symantec Mail Security 5.0
Symantec Altiris Deployment Solution
Symantec Enforce 7.0
Autonomy Keyview Filter Sdk 2.0
Autonomy Keyview Filter Sdk 9.2.0
Ibm Lotus Notes 6.5.1
Ibm Lotus Notes 6.5.2
Symantec Mail Security 7.5.5.32
Symantec Mail Security 7.5..4.29
Symantec Mail Security 5.0.1.181
Symantec Mail Security 5.0.1.182
Symantec Data Loss Prevention Detection Servers 7.0
Symantec Data Loss Prevention Detection Servers 8.0
Symantec Enforce 8.1
Symantec Data Loss Prevention Endpoint Agents 8.0
Symantec Data Loss Prevention Endpoint Agents 8.1
Autonomy Keyview Viewer Sdk 10
7.5
CVSSv2
CVE-2003-0179
Buffer overflow in the COM Object Control Handler for Lotus Domino 6.0.1 and previous versions allows remote malicious users to execute arbitrary code via multiple attack vectors, as demonstrated using the InitializeUsingNotesUserName method in the iNotes ActiveX control.
Ibm Lotus Domino Web Server 6.0
Ibm Lotus Notes Client 6.0
6.8
CVSSv2
CVE-2017-1711
IBM iNotes 8.5 and 9.0 SUService can be misguided into running malicious code from a DLL masquerading as a windows DLL in the temp directory. IBM X-Force ID: 134532.
Ibm Notes 9.0.0.0
Ibm Notes 8.5.0.0
Ibm Notes 8.5.1.0
Ibm Notes 8.5.2.0
Ibm Notes 8.5.3.0
Ibm Notes 9.0.1.0
Ibm Client Application Access 1.0.1.1
Ibm Client Application Access 1.0.1.2
Ibm Client Application Access 1.0.1.0
1 Article
7.5
CVSSv2
CVE-2002-0037
Lotus Domino Servers 5.x, 4.6x, and 4.5x allows malicious users to bypass the intended Reader and Author access list for a document's object via a Notes API call (NSFDbReadObject) that directly accesses the object.
Ibm Lotus Domino Server 4.6
Ibm Lotus Domino Server 4.5
Ibm Lotus Domino Server 5
10
CVSSv2
CVE-2011-0915
Stack-based buffer overflow in nrouter.exe in IBM Lotus Domino prior to 8.5.3 allows remote malicious users to execute arbitrary code via a long name parameter in a Content-Type header in a malformed Notes calendar (aka iCalendar or iCal) meeting request, aka SPR KLYH87LL23.
Ibm Lotus Domino 5.0.9
Ibm Lotus Domino 6.0.1.2
Ibm Lotus Domino 6.0.2 Cf2
Ibm Lotus Domino 6.0.2
Ibm Lotus Domino 4.6.3
Ibm Lotus Domino 4.6.4
Ibm Lotus Domino 5.0.4
Ibm Lotus Domino 5.0.4a
Ibm Lotus Domino 6.5.2.1
Ibm Lotus Domino 6.5.0
Ibm Lotus Domino 6.5.4.1
Ibm Lotus Domino 4.6.1
Ibm Lotus Domino 7.0.2.1
Ibm Lotus Domino 7.0.2.2
Ibm Lotus Domino 8.0.2
Ibm Lotus Domino 8.0.2.1
Ibm Lotus Domino 8.5.1.1
Ibm Lotus Domino 8.5.1.2
Ibm Lotus Domino 5.0.9a
Ibm Lotus Domino 6.0.1.1
Ibm Lotus Domino 6.0.4
Ibm Lotus Domino 6.0.3
7.8
CVSSv2
CVE-2011-1393
Unspecified vulnerability in the authentication functionality in the server in IBM Lotus Domino 8.x prior to 8.5.2 FP4 allows remote malicious users to cause a denial of service (daemon crash) via a crafted Notes RPC packet.
Ibm Lotus Domino 8.0.2
Ibm Lotus Domino 8.0.2.1
Ibm Lotus Domino 8.5.0
Ibm Lotus Domino 8.5.1
Ibm Lotus Domino 8.0.2.2
Ibm Lotus Domino 8.0.2.3
Ibm Lotus Domino 8.5.1.1
Ibm Lotus Domino 8.5.1.2
Ibm Lotus Domino 8.0.2.4
Ibm Lotus Domino 8.0.2.5
Ibm Lotus Domino 8.5.1.3
Ibm Lotus Domino 8.5.1.4
Ibm Lotus Domino 8.0
Ibm Lotus Domino 8.0.1
Ibm Lotus Domino 8.0.2.6
Ibm Lotus Domino 8.0.5
Ibm Lotus Domino 8.5.1.5
Ibm Lotus Domino
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-38002
CVE-2006-4304
CVE-2024-4336
CVE-2024-33437
CVE-2024-4340
CVE-2024-27956
privilege
insecure direct object reference
XSS
item search icon">CVE-2024-25938
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »