Lotus Domino 5.x allows remote attackers to read files or execute arbitrary code by requesting the ReplicaID of the Web Administrator template file (webadmin.ntf).
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Domino | Lotus | 5.0 (including) | 5.0 (including) |
| Domino | Lotus | 5.0.1 (including) | 5.0.1 (including) |
| Domino | Lotus | 5.0.2 (including) | 5.0.2 (including) |
| Domino | Lotus | 5.0.2a (including) | 5.0.2a (including) |
| Domino | Lotus | 5.0.2c (including) | 5.0.2c (including) |
| Domino | Lotus | 5.0.3 (including) | 5.0.3 (including) |
| Domino | Lotus | 5.0.4 (including) | 5.0.4 (including) |
| Domino | Lotus | 5.0.4a (including) | 5.0.4a (including) |
| Domino | Lotus | 5.0.5 (including) | 5.0.5 (including) |
| Domino | Lotus | 5.0.6 (including) | 5.0.6 (including) |
| Domino | Lotus | 5.0.6a (including) | 5.0.6a (including) |
| Domino | Lotus | 5.0.7 (including) | 5.0.7 (including) |
| Domino | Lotus | 5.0.7a (including) | 5.0.7a (including) |
| Domino | Lotus | 5.0.8 (including) | 5.0.8 (including) |
References
- http://marc.info/?l=bugtraq\u0026m=100448721830960\u0026w=2
- http://www.iss.net/security_center/static/7424.php
- http://www.osvdb.org/1979
- https://exchange.xforce.ibmcloud.com/vulnerabilities/7424
- http://marc.info/?l=bugtraq\u0026m=100448721830960\u0026w=2
- http://www.iss.net/security_center/static/7424.php
- http://www.osvdb.org/1979
- https://exchange.xforce.ibmcloud.com/vulnerabilities/7424