ID CVE-2001-1567
Summary Lotus Domino server 5.0.9a and earlier allows remote attackers to bypass security restrictions and view Notes database files and possibly sensitive Notes template files (.ntf) via an HTTP request with a large number of "+" characters before the .nsf file extension, which are converted to spaces by Domino.
References
Vulnerable Configurations
  • IBM Lotus Domino 5.0
    cpe:2.3:a:ibm:lotus_domino:5.0
  • IBM Lotus Domino 5.0.1
    cpe:2.3:a:ibm:lotus_domino:5.0.1
  • IBM Lotus Domino 5.0.2
    cpe:2.3:a:ibm:lotus_domino:5.0.2
  • IBM Lotus Domino 5.0.3
    cpe:2.3:a:ibm:lotus_domino:5.0.3
  • cpe:2.3:a:ibm:lotus_domino:5.0.4:-:solaris
    cpe:2.3:a:ibm:lotus_domino:5.0.4:-:solaris
  • IBM Lotus Domino 5.0.5
    cpe:2.3:a:ibm:lotus_domino:5.0.5
  • IBM Lotus Domino 5.0.6
    cpe:2.3:a:ibm:lotus_domino:5.0.6
  • cpe:2.3:a:ibm:lotus_domino:5.0.7:-:solaris
    cpe:2.3:a:ibm:lotus_domino:5.0.7:-:solaris
  • IBM Lotus Domino 5.0.7a
    cpe:2.3:a:ibm:lotus_domino:5.0.7a
  • IBM Lotus Domino 5.0.8
    cpe:2.3:a:ibm:lotus_domino:5.0.8
  • IBM Lotus Domino 5.0.9
    cpe:2.3:a:ibm:lotus_domino:5.0.9
  • IBM Lotus Domino Server 5.0.9a
    cpe:2.3:a:ibm:lotus_domino_server:5.0.9a
CVSS
Base: 5.0 (as of 30-09-2005 - 14:55)
Impact:
Exploitability:
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL NONE NONE
nessus via4
NASL family Web Servers
NASL id DOMINO_AUTHENTICATION_BYPASS.NASL
description By creating a specially crafted URL, the authentication mechanism of the Domino database can be circumvented. These URLs should look like : http://host.com/.ntf.nsf/ in which has a certain length.
last seen 2019-01-16
modified 2018-11-15
plugin id 10953
published 2002-05-12
reporter Tenable
source https://www.tenable.com/plugins/index.php?view=single&id=10953
title IBM Lotus Domino Crafted .nsf Request Authentication Bypass
refmap via4
bid 4022
bugtraq
  • 20020203 Lotus Domino password bypass
  • 20020204 Lotus Domino password bypass
  • 20020204 Re: Lotus Domino password bypass
misc http://www.nextgenss.com/papers/hpldws.pdf
xf lotus-domino-auth-bypass(8072)
Last major update 17-10-2016 - 22:15
Published 31-12-2001 - 00:00
Back to Top