[27746] in bugtraq


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Lotus Domino HTTP Server security issue

daemon@ATHENA.MIT.EDU (Frank Perreault)
Thu Nov 7 23:33:47 2002

Date: 7 Nov 2002 20:39:20 -0000
Message-ID: <20021107203920.27788.qmail@mail.securityfocus.com>
Content-Type: text/plain
Content-Disposition: inline
Content-Transfer-Encoding: binary
MIME-Version: 1.0
From: Frank Perreault <frank@harrystotle.com>
To: bugtraq@securityfocus.com

Lotus Domino http (version) banner will appear despite
notes.ini 'DominoNoBanner=1' setting. To recreate:
formulate a URL requesting a non-existing nsf database.

Example: 'http://serverAddress/nosuchdb.nsf'

Has been verified on Lotus Domino 5.0.8, 5.0.9 and
5.0.9a.  IBM Support is documenting and assigning a SPR
number.  (Taken <a
href="http://hs.servehttp.com:9080/archives/00000042.html">here</a>.)


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[27746] in bugtraq

Lotus Domino HTTP Server security issue

daemon@ATHENA.MIT.EDU (Frank Perreault)Thu Nov 7 23:33:47 2002

daemon@ATHENA.MIT.EDU (Frank Perreault)
Thu Nov 7 23:33:47 2002