Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm lotus domino 6.5.5 vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv3
CVE-2007-5544
IBM Lotus Notes prior to 6.5.6, and 7.x prior to 7.0.3; and Domino prior to 6.5.5 FP3, and 7.x prior to 7.0.2 FP1; uses weak permissions (Everyone:Full Control) for memory mapped files (shared memory) in IPC, which allows local users to obtain sensitive information, or inject Lot...
Ibm Lotus Notes
Ibm Lotus Domino
Ibm Lotus Domino 7.0.2
Ibm Lotus Domino 6.5.5
NA
CVE-2011-0913
Stack-based buffer overflow in ndiiop.exe in the DIIOP implementation in the server in IBM Lotus Domino prior to 8.5.3 allows remote malicious users to execute arbitrary code via a GIOP getEnvironmentString request, related to the local variable cache.
Ibm Lotus Domino 5.0.9
Ibm Lotus Domino 6.0.2 Cf2
Ibm Lotus Domino 6.0.2
Ibm Lotus Domino 4.6.3
Ibm Lotus Domino 4.6.4
Ibm Lotus Domino 5.0.4
Ibm Lotus Domino 5.0.4a
Ibm Lotus Domino 6.5.2.1
Ibm Lotus Domino 6.5.0
Ibm Lotus Domino 6.5.4.1
Ibm Lotus Domino 4.6.1
Ibm Lotus Domino 7.0.2.1
Ibm Lotus Domino 7.0.2.2
Ibm Lotus Domino 7.0.2.3
Ibm Lotus Domino 8.0.2
Ibm Lotus Domino 8.0.2.1
Ibm Lotus Domino 8.5.1.1
Ibm Lotus Domino 8.5.1.2
Ibm Lotus Domino 5.0.9a
Ibm Lotus Domino 6.0.1.1
Ibm Lotus Domino 6.0.1
Ibm Lotus Domino 6.0.4
NA
CVE-2011-0915
Stack-based buffer overflow in nrouter.exe in IBM Lotus Domino prior to 8.5.3 allows remote malicious users to execute arbitrary code via a long name parameter in a Content-Type header in a malformed Notes calendar (aka iCalendar or iCal) meeting request, aka SPR KLYH87LL23.
Ibm Lotus Domino 5.0.9
Ibm Lotus Domino 6.0.1.2
Ibm Lotus Domino 6.0.2 Cf2
Ibm Lotus Domino 6.0.2
Ibm Lotus Domino 4.6.3
Ibm Lotus Domino 4.6.4
Ibm Lotus Domino 5.0.4
Ibm Lotus Domino 5.0.4a
Ibm Lotus Domino 6.5.2.1
Ibm Lotus Domino 6.5.0
Ibm Lotus Domino 6.5.4.1
Ibm Lotus Domino 4.6.1
Ibm Lotus Domino 7.0.2.1
Ibm Lotus Domino 7.0.2.2
Ibm Lotus Domino 8.0.2
Ibm Lotus Domino 8.0.2.1
Ibm Lotus Domino 8.5.1.1
Ibm Lotus Domino 8.5.1.2
Ibm Lotus Domino 5.0.9a
Ibm Lotus Domino 6.0.1.1
Ibm Lotus Domino 6.0.4
Ibm Lotus Domino 6.0.3
NA
CVE-2011-0914
Integer signedness error in ndiiop.exe in the DIIOP implementation in the server in IBM Lotus Domino prior to 8.5.3 allows remote malicious users to execute arbitrary code via a GIOP client request, leading to a heap-based buffer overflow.
Ibm Lotus Domino 6.0
Ibm Lotus Domino 5.0.9a
Ibm Lotus Domino 6.0.2.1
Ibm Lotus Domino 6.0.4
Ibm Lotus Domino 5.0.1
Ibm Lotus Domino 5.0.10
Ibm Lotus Domino 5.0.6
Ibm Lotus Domino 5.0.6a
Ibm Lotus Domino 6.5.4
Ibm Lotus Domino 6.5.3
Ibm Lotus Domino 6.0.1.2
Ibm Lotus Domino 6.0.2 Cf2
Ibm Lotus Domino 6.0.5
Ibm Lotus Domino 4.6.3
Ibm Lotus Domino 5.0.3
Ibm Lotus Domino 5.0.4
Ibm Lotus Domino 6.5.2
Ibm Lotus Domino 6.5.2.1
Ibm Lotus Domino 6.5.4.3
Ibm Lotus Domino 6.5.4.1
Ibm Lotus Domino 7.0.2
Ibm Lotus Domino 7.0.2.1
NA
CVE-2007-4474
Multiple stack-based buffer overflows in the IBM Lotus Domino Web Access ActiveX control, as provided by inotes6.dll, inotes6w.dll, dwa7.dll, and dwa7w.dll, in Domino 6.x and 7.x allow remote malicious users to execute arbitrary code, as demonstrated by an overflow from a long Ge...
Ibm Domino Web Access 6.0.1.1
Ibm Domino Web Access 6.0.2
Ibm Domino Web Access 6.5.3
Ibm Domino Web Access 6.5.4
Ibm Domino Web Access 6.0
Ibm Domino Web Access 6.0.1
Ibm Domino Web Access 6.5.1
Ibm Domino Web Access 6.5.2
Ibm Lotus Domino Web Access 7.0.34.1
Ibm Domino Web Access 6.0.3
Ibm Domino Web Access 6.0.4
Ibm Domino Web Access 6.5.5
Ibm Domino Web Access 7.0
Ibm Domino Web Access 6.0.5
Ibm Domino Web Access 6.5
Ibm Domino Web Access 7.0.1
Ibm Lotus Domino Web Access 7.0.1
4 EDB exploits
NA
CVE-2007-3510
Buffer overflow in the IMAP service in IBM Lotus Domino prior to 6.5.6 FP2, and 7.x prior to 7.0.3, allows remote authenticated users to execute arbitrary code via a long mailbox name.
Ibm Lotus Domino 7.0
Ibm Lotus Domino 7.0.2
Ibm Lotus Domino 6.5.6
Ibm Lotus Domino 6.5.5
NA
CVE-2007-5700
The Evaluate LotusScript method in IBM Lotus Domino prior to 7.0.3 uses an incorrect security context for @ formula commands in some circumstances, which might allow remote authenticated users to gain privileges and obtain sensitive information.
Ibm Lotus Domino 6.5.6
Ibm Lotus Domino 7.0
Ibm Lotus Domino 7.0.2
Ibm Lotus Domino 6.5.5
NA
CVE-2007-5701
Incomplete blacklist vulnerability in the Certificate Authority (CA) in IBM Lotus Domino prior to 7.0.3 allows local users, or attackers with physical access, to obtain sensitive information (passwords) when an administrator enters a "ca activate" or "ca unlock&quo...
Ibm Lotus Domino 6.5.5
Ibm Lotus Domino 7.0.2
Ibm Lotus Domino 6.5.6
Ibm Lotus Domino 7.0
NA
CVE-2007-0067
Unspecified vulnerability in the Lotus Domino Web Server 6.0, 6.5.x prior to 6.5.6, and 7.0.x prior to 7.0.3 allows remote malicious users to cause a denial of service (daemon crash) via requests for URLs that reference certain files.
Ibm Lotus Domino Web Server 6.0
Ibm Lotus Domino Web Server 6.0.1
Ibm Lotus Domino Web Server 6.5.1
Ibm Lotus Domino Web Server 6.5.2
Ibm Lotus Domino Web Server 7.0
Ibm Lotus Domino Web Server 7.0.1
Ibm Lotus Domino Web Server 6.0.3
Ibm Lotus Domino Web Server 6.0.4
Ibm Lotus Domino Web Server 6.5.4
Ibm Lotus Domino Web Server 6.5.5
Ibm Lotus Domino Web Server 6.0.2
Ibm Lotus Domino Web Server 6.0.2 Cf2
Ibm Lotus Domino Web Server 6.5.3
Ibm Lotus Domino Web Server 7.0.2
Ibm Lotus Domino Web Server 6.0.5
Ibm Lotus Domino Web Server 6.5.0
NA
CVE-2007-1941
Cross-site scripting (XSS) vulnerability in the Active Content Filter feature in Domino Web Access (DWA) in IBM Lotus Notes prior to 6.5.6 and 7.x prior to 7.0.2 FP1 allows remote malicious users to inject arbitrary web script or HTML via a multipart/related e-mail message, a dif...
Ibm Lotus Notes 6.5.5
Ibm Lotus Notes 7.0.1
Ibm Lotus Notes 7.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
man-in-the-middle
command injection
CVE-2021-47511
CVE-2024-26238
CVE-2024-4858
CVE-2024-21305
XXE
CVE-2021-47555
CVE-2021-47526
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »