Lotus Domino server 5.0.9a and previous versions allows remote malicious users to bypass security restrictions and view Notes database files and possibly sensitive Notes template files (.ntf) via an HTTP request with a large number of "+" characters before the .nsf file extension, which are converted to spaces by Domino.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ibm lotus domino 5.0.6 |
||
ibm lotus domino 5.0.7 |
||
ibm lotus domino 5.0 |
||
ibm lotus domino 5.0.1 |
||
ibm lotus domino 5.0.7a |
||
ibm lotus domino 5.0.8 |
||
ibm lotus domino 5.0.2 |
||
ibm lotus domino 5.0.3 |
||
ibm lotus domino 5.0.9 |
||
ibm lotus domino server |
||
ibm lotus domino 5.0.4 |
||
ibm lotus domino 5.0.5 |