Domino
by Lotus
CVEs (45)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2001-1312 | 0.00 | — | 0.04 | Jul 16, 2001 | Format string vulnerabilities in Lotus Domino R5 before R5.0.7a allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code, as demonstrated by the PROTOS LDAPv3 test suite. | |||
| CVE-2001-1161 | 0.00 | — | 0.04 | Jul 2, 2001 | Cross-site scripting (CSS) vulnerability in Lotus Domino 5.0.6 allows remote attackers to execute script on other web clients via a URL that ends in Javascript, which generates an error message that does not quote the resulting script. | |||
| CVE-2000-1047 | 0.00 | — | 0.04 | Dec 11, 2000 | Buffer overflow in SMTP service of Lotus Domino 5.0.4 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long ENVID keyword in the "MAIL FROM" command. | |||
| CVE-2000-0021 | 0.00 | — | 0.01 | Dec 1, 1999 | Lotus Domino HTTP server allows remote attackers to determine the real path of the server via a request to a non-existent script in /cgi-bin. | |||
| CVE-1999-1012 | 0.00 | — | 0.01 | May 4, 1999 | SMTP component of Lotus Domino 4.6.1 on AS/400, and possibly other operating systems, allows a remote attacker to crash the mail server via a long string. |
- CVE-2001-1312Jul 16, 2001risk 0.00cvss —epss 0.04
Format string vulnerabilities in Lotus Domino R5 before R5.0.7a allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code, as demonstrated by the PROTOS LDAPv3 test suite.
- CVE-2001-1161Jul 2, 2001risk 0.00cvss —epss 0.04
Cross-site scripting (CSS) vulnerability in Lotus Domino 5.0.6 allows remote attackers to execute script on other web clients via a URL that ends in Javascript, which generates an error message that does not quote the resulting script.
- CVE-2000-1047Dec 11, 2000risk 0.00cvss —epss 0.04
Buffer overflow in SMTP service of Lotus Domino 5.0.4 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long ENVID keyword in the "MAIL FROM" command.
- CVE-2000-0021Dec 1, 1999risk 0.00cvss —epss 0.01
Lotus Domino HTTP server allows remote attackers to determine the real path of the server via a request to a non-existent script in /cgi-bin.
- CVE-1999-1012May 4, 1999risk 0.00cvss —epss 0.01
SMTP component of Lotus Domino 4.6.1 on AS/400, and possibly other operating systems, allows a remote attacker to crash the mail server via a long string.
Page 3 of 3