Lotus Domino R5 before 5.0.7 allows a remote malicious user to create a denial of service via URL requests (>8Kb) containing a large number of '/' characters.
lotus domino r5 server