Ibm Lotus Domino Web Access vulnerabilities
2 known vulnerabilities affecting ibm/lotus_domino_web_access.
Total CVEs
2
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH1
Vulnerabilities
Page 1 of 1
CVE-2007-4474CRITICALCVSS 9.3PoCv7.0.1v7.0.34.12007-12-27
CVE-2007-4474 [CRITICAL] CWE-119 CVE-2007-4474: Multiple stack-based buffer overflows in the IBM Lotus Domino Web Access ActiveX control, as provide
Multiple stack-based buffer overflows in the IBM Lotus Domino Web Access ActiveX control, as provided by inotes6.dll, inotes6w.dll, dwa7.dll, and dwa7w.dll, in Domino 6.x and 7.x allow remote attackers to execute arbitrary code, as demonstrated by an overflow from a long General_ServerName property value when calling the InstallBrowserHelperDll func
nvd
CVE-2006-4763HIGHCVSS 7.5v7.0.12006-09-13
CVE-2006-4763 [HIGH] CVE-2006-4763: IBM Lotus Domino Web Access (DWA) 7.0.1 does not expire a client's Lightweight Third-Party Authentic
IBM Lotus Domino Web Access (DWA) 7.0.1 does not expire a client's Lightweight Third-Party Authentication token (LtpaToken) upon logout, which allows remote attackers to obtain a user's privileges by intercepting the LtpaToken cookie.
nvd