CVE-2002-2191
published 2002-12-31CVE-2002-2191: Lotus Domino 5.0.9a and earlier, even when configured with the 'DominoNoBanner=1' option, allows remote attackers to obtain potential sensitive information…
PriorityP419medium5CVSS 2.0
AVNACLAuNCPINAN
EXPLOIT
EPSS
2.93%
85.4th percentile
Lotus Domino 5.0.9a and earlier, even when configured with the 'DominoNoBanner=1' option, allows remote attackers to obtain potential sensitive information such as the version via a request for a non-existent .nsf database, which leaks the version in the HTTP banner.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| lotus | domino | — | — |
| lotus | domino | — | — |
| lotus | domino | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No writeups or analysis indexed.
http://www.iss.net/security_center/static/10557.phphttp://www.securityfocus.com/archive/1/298874/2002-11-05/2002-11-11/2http://www.securityfocus.com/bid/6128http://www.iss.net/security_center/static/10557.phphttp://www.securityfocus.com/archive/1/298874/2002-11-05/2002-11-11/2http://www.securityfocus.com/bid/6128
2002-12-31
Published