← voltar
CVE-2001-1567

CVE-2001-1567

EPSS 1.6%
Lotus Domino server 5.0.9a and earlier allows remote attackers to bypass security restrictions and view Notes database files and possibly sensitive Notes template files (.ntf) via an HTTP request with a large number of "+" characters before the .nsf file extension, which are converted to spaces by Domino.
Produtos afetados
n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
http://marc.info/?l=bugtraq&m=101284222932568&w=2http://marc.info/?l=bugtraq&m=101285903120879&w=2http://marc.info/?l=bugtraq&m=101286525008089&w=2http://www.iss.net/security_center/static/8072.phphttp://www.nextgenss.com/papers/hpldws.pdfhttp://www.securityfocus.com/bid/4022