CVE-2002-1010

UNKNOWN

Lotus Domino R4 allows remote attackers to bypass access restrictions for files in the web root via an HTTP request appended with a "?" character, which is treated as a wildcard character and bypasses the web handlers

Published Aug 31, 2002

Modified 1 years ago

Details

Lotus Domino R4 allows remote attackers to bypass access restrictions for files in the web root via an HTTP request appended with a "?" character, which is treated as a wildcard character and bypasses the web handlers.

References

WEB

http://archives.neohapsis.com/archives/vulnwatch/2002-q3/0001.html

ADVISORY

https://www.cve.org/CVERecord?id=CVE-2002-1010

CVSS Analysis

CVSS v2.0

7.5

Exploitability

Access Vector

NetworkAV:N

Access Complexity

LowAC:L

Authentication

NoneAu:N

Impact

Confidentiality

PartialC:P

Integrity

PartialI:P

Availability

PartialA:P

7.5/AV:N/AC:L/Au:N/C:P/I:P/A:P

Ecosystems

Timeline

PublishedAug 31, 2002

ModifiedAug 8, 2024