Lotus Domino 5.0.8-9 - Non-Existent NSF Database Banner Information Disclosure
| EKU-ID: 27489 | CVE: CVE-2002-2191;OSVDB-60115 | OSVDB-ID: |
| Author: Frank Perreault | Published: 2002-11-07 | Verified:
 |
| Download: | ||
Rating☆☆☆☆☆ |
| EKU-ID: 27489 | CVE: CVE-2002-2191;OSVDB-60115 | OSVDB-ID: |
| Author: Frank Perreault | Published: 2002-11-07 | Verified:
|
| Download: | ||
Rating☆☆☆☆☆ |
source: https://www.securityfocus.com/bid/6128/info Lotus Domino reportedly discloses sensitive banner information when a non-existent NSF database is requested. This may allow a remote attacker to discover information about the layout of the filesystem. This issue is present on Lotus Domino Server with the 'DominoNoBanner' set to a value of '1'. http://www.example.com/nosuchdb.nsf