Shodan
Vulnerabilities
Vulnerable Software
Lotus:  Security Vulnerabilities
CVE-2001-0847
Lotus Domino Web Server 5.x allows remote attackers to gain sensitive information by accessing the default navigator $defaultNav via (1) URL encoding the request, or (2) directly requesting the ReplicaID.
CVSS Score
7.5
EPSS Score
0.008
Published
2001-12-06
CVE-2001-0939
Lotus Domino 5.08 and earlier allows remote attackers to cause a denial of service (crash) via a SunRPC NULL command to port 443.
CVSS Score
5.0
EPSS Score
0.009
Published
2001-11-30
CVE-2001-1018
Lotus Domino web server 5.08 allows remote attackers to determine the internal IP address of the server when NAT is enabled via a GET request that contains a long sequence of / (slash) characters.
CVSS Score
5.0
EPSS Score
0.006
Published
2001-09-20
CVE-2000-1203
Lotus Domino SMTP server 4.63 through 5.08 allows remote attackers to cause a denial of service (CPU consumption) by forging an email message with the sender as bounce@[127.0.0.1] (localhost), which causes Domino to enter a mail loop.
CVSS Score
5.0
EPSS Score
0.009
Published
2001-08-20
CVE-2001-0600
Lotus Domino R5 prior to 5.0.7 allows a remote attacker to create a denial of service via repeated URL requests with the same HTTP headers, such as (1) Accept, (2) Accept-Charset, (3) Accept-Encoding, (4) Accept-Language, and (5) Content-Type.
CVSS Score
5.0
EPSS Score
0.008
Published
2001-08-02
CVE-2001-0601
Lotus Domino R5 prior to 5.0.7 allows a remote attacker to create a denial of service via HTTP requests containing certain combinations of UNICODE characters.
CVSS Score
5.0
EPSS Score
0.008
Published
2001-08-02
CVE-2001-0602
Lotus Domino R5 prior to 5.0.7 allows a remote attacker to create a denial of service via repeated (>400) URL requests for DOS devices.
CVSS Score
5.0
EPSS Score
0.008
Published
2001-08-02
CVE-2001-0603
Lotus Domino R5 prior to 5.0.7 allows a remote attacker to create a denial of service via repeatedly sending large (> 10Kb) amounts of data to the DIIOP - CORBA service on TCP port 63148.
CVSS Score
5.0
EPSS Score
0.008
Published
2001-08-02
CVE-2001-0604
Lotus Domino R5 prior to 5.0.7 allows a remote attacker to create a denial of service via URL requests (>8Kb) containing a large number of '/' characters.
CVSS Score
5.0
EPSS Score
0.008
Published
2001-08-02
CVE-2001-1161
Cross-site scripting (CSS) vulnerability in Lotus Domino 5.0.6 allows remote attackers to execute script on other web clients via a URL that ends in Javascript, which generates an error message that does not quote the resulting script.
CVSS Score
7.5
EPSS Score
0.036
Published
2001-07-02


Products
Pricing
Contact Us

Shodan ® - All rights reserved