| VID |
22183 |
| Severity |
20 |
| Port |
80, ... |
| Protocol |
TCP |
| Class |
WWW |
| Detailed Description |
The Lotus Domino server contains an Internal IP address disclosure vulnerability.
Lotus Domino Server is an application framework for web based collaborative software. It runs on multiple platforms including Windows and Unix. The version 5.0.8 of Lotus Domino server can reveal the Internal IP address to a remote attacker. This vulnerability arises when a remote attacker sends a specially malformed GET request to the server as the following:
GET //////////// HTTP/1.0
Such request will allow the remote server to return the error message including the Internal IP address as the follow:
Error 404
Not found - file doesn't exist or is read protected [even tried multi
<A HREF="http://11.106.99.40/">
.....
A remote attacker can use this information to perform further attack.
* References:
http://www.kb.cert.org/vuls/id/133771
http://archives.neohapsis.com/archives/bugtraq/2001-09/0166.html
* Platforms Affected:
Lotus Domino 5.0.8 |
| Recommendation |
Upgrade to the latest version of Lotus Domino from:
http://www.ibm.com/developerworks/lotus/downloads.html |
| Related URL |
CVE-2001-1018 (CVE) |
| Related URL |
3350 (SecurityFocus) |
| Related URL |
(ISS) |
|
