CVE Vulnerabilities

CVE-2002-2191

Published: Dec 31, 2002 | Modified: Sep 05, 2008
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
5 MEDIUM
AV:N/AC:L/Au:N/C:P/I:N/A:N
RedHat/V2
RedHat/V3
Ubuntu

Lotus Domino 5.0.9a and earlier, even when configured with the ‘DominoNoBanner=1’ option, allows remote attackers to obtain potential sensitive information such as the version via a request for a non-existent .nsf database, which leaks the version in the HTTP banner.

Affected Software

Name Vendor Start Version End Version
Domino Lotus 5.0.8 5.0.8
Domino Lotus 5.0.9 5.0.9
Domino Lotus 5.0.9a 5.0.9a

References