CVE-2008-2410
- EPSS 0.46%
- Veröffentlicht 22.05.2008 13:09:00
- Zuletzt bearbeitet 09.04.2025 00:30:58
Cross-site scripting (XSS) vulnerability in the servlet engine and Web container in the Web Server service in IBM Lotus Domino before 7.0.3 FP1, and 8.x before 8.0.1, allows remote authenticated users to inject arbitrary web script or HTML via unspec...
CVE-2007-0067
- EPSS 2.85%
- Veröffentlicht 06.06.2007 10:30:00
- Zuletzt bearbeitet 09.04.2025 00:30:58
Unspecified vulnerability in the Lotus Domino Web Server 6.0, 6.5.x before 6.5.6, and 7.0.x before 7.0.3 allows remote attackers to cause a denial of service (daemon crash) via requests for URLs that reference certain files.
- EPSS 58.51%
- Veröffentlicht 02.04.2003 05:00:00
- Zuletzt bearbeitet 03.04.2025 01:03:51
Multiple buffer overflows in Lotus Domino Web Server before 6.0.1 allow remote attackers to cause a denial of service or execute arbitrary code via (1) the s_ViewName option in the PresetFields parameter for iNotes, (2) the Foldername option in the P...
CVE-2003-0179
- EPSS 35.64%
- Veröffentlicht 02.04.2003 05:00:00
- Zuletzt bearbeitet 03.04.2025 01:03:51
Buffer overflow in the COM Object Control Handler for Lotus Domino 6.0.1 and earlier allows remote attackers to execute arbitrary code via multiple attack vectors, as demonstrated using the InitializeUsingNotesUserName method in the iNotes ActiveX co...
- EPSS 10.01%
- Veröffentlicht 02.04.2003 05:00:00
- Zuletzt bearbeitet 03.04.2025 01:03:51
Lotus Domino Web Server (nhttp.exe) before 6.0.1 allows remote attackers to cause a denial of service via an incomplete POST request, as demonstrated using the h_PageUI form.
- EPSS 2.84%
- Veröffentlicht 02.04.2003 05:00:00
- Zuletzt bearbeitet 03.04.2025 01:03:51
Lotus Domino Web Server (nhttp.exe) before 6.0.1 allows remote attackers to cause a denial of service via a "Fictionary Value Field POST request" as demonstrated using the s_Validation form with a long, unknown parameter name.