Vulnerability Assessment & Network Security Forums

If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.

Home >> Browse Vulnerability Assessment Database >> Denial of Service >> Lotus /./ database lock

Vulnerability Assessment Details

Lotus /./ database lock
Vulnerability Assessment Summary
Locks out Lotus database with /./ request

Detailed Explanation for this Vulnerability Assessment

It might be possible to lock out some Lotus Domino databases by
requesting them through the web interface with a special request
like /./name.nsf
This attack is only efficient on databases that are not used by
the server.

*** Note that no real attack was performed,
*** so this might be a false alert

Solution: upgrade your Lotus Domino server
Network Security Threat Level: Medium

Networks Security ID: 3656

Vulnerability Assessment Copyright: This script is Copyright (C) 2003 Michel Arboi
Cables, Connectors

Genuine Cisco DS-SFP-FC32G-SW 10-3206-01 32 Gbps FC Transceiver
$49.99		 Genuine Cisco DS-SFP-FC32G-SW 10-3206-01 32 Gbps FC Transceiver pictureDell Broadcom 57414 Dual Port 25Gb SFP28 rNDC (6WMMV)
$199.0		 Dell Broadcom 57414 Dual Port 25Gb SFP28 rNDC (6WMMV) pictureDell Mellanox ConnectX-4 CX422A Dual Port 25GbE SFP HBA rNDC (R887V)
$199.0		 Dell Mellanox ConnectX-4 CX422A Dual Port 25GbE SFP HBA rNDC (R887V) pictureCisco WS-C3650-48TS-E Catalyst 3650 48 Port, 4x1G SFP Switch - Rack Ears - 2 PSU
$1995.0		 Cisco WS-C3650-48TS-E Catalyst 3650 48 Port, 4x1G SFP Switch - Rack Ears - 2 PSU picture


Discussions

No Discussions have been posted on this vulnerability.