Ibm: >> Lotus Domino Server >> 5.0 Security Vulnerabilities
Lotus Domino server 5.0.9a and earlier allows remote attackers to cause a denial of service by exhausting the number of working threads via a large number of HTTP requests for (1) an MS-DOS device name and (2) an MS-DOS device name with a large number of characters appended to the device name.
CVSS Score
5.0
EPSS Score
0.014
Published
2002-12-31
Lotus Domino server 5.0.9a and earlier allows remote attackers to bypass security restrictions and view Notes database files and possibly sensitive Notes template files (.ntf) via an HTTP request with a large number of "+" characters before the .nsf file extension, which are converted to spaces by Domino.
CVSS Score
5.0
EPSS Score
0.004
Published
2001-12-31