Vulnerabilities (CVE)

Filtered by vendor Ibm Subscribe
Filtered by product Lotus Domino
Total 106 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2004-0669 1 Ibm 1 Lotus Domino 2024-02-04 7.5 HIGH N/A
Lotus Domino 6.5.0 and 6.5.1, with IMAP enabled, allows remote authenticated users to change their quota by using the IMAP setquota command.
CVE-2002-1624 1 Ibm 1 Lotus Domino 2024-02-04 5.0 MEDIUM N/A
Buffer overflow in Lotus Domino web server before R5.0.10, when logging to DOMLOG.NSF, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long HTTP Authenticate header containing certain non-ASCII characters.
CVE-2003-0122 1 Ibm 2 Lotus Domino, Lotus Notes Client 2024-02-04 5.0 MEDIUM N/A
Buffer overflow in Notes server before Lotus Notes R4, R5 before 5.0.11, and early R6 allows remote attackers to execute arbitrary code via a long distinguished name (DN) during NotesRPC authentication and an outer field length that is less than that of the DN field.
CVE-2003-0123 1 Ibm 2 Lotus Domino, Lotus Notes Client 2024-02-04 5.0 MEDIUM N/A
Buffer overflow in Web Retriever client for Lotus Notes/Domino R4.5 through R6 allows remote malicious web servers to cause a denial of service (crash) via a long HTTP status line.
CVE-2002-0086 1 Ibm 1 Lotus Domino 2024-02-04 7.2 HIGH N/A
Buffer overflow in bindsock in Lotus Domino 5.0.4 and 5.0.7 on Linux allows local users to gain root privileges via a long (1) Notes_ExecDirectory or (2) PATH environment variable.
CVE-2000-1215 1 Ibm 1 Lotus Domino 2024-02-04 5.0 MEDIUM N/A
The default configuration of Lotus Domino server 5.0.8 includes system information (version, operating system, and build date) in the HTTP headers of replies, which allows remote attackers to obtain sensitive information.