VULHUB ™

A problem has been found in Lotus Domino. It has been reported that requests are not sufficiently sanitized allowing an attacker to reveal the contents of arbitrary web server readable resources that are of a file type not specific to Lotus. By appending a dot to the requested filename an attacker may disclose sensitive information embedded in server side scripts or include files. Other resources may also be disclosed.

A problem has been found in Lotus Domino. It has been reported that requests are not sufficiently sanitized allowing an attacker to reveal the contents of arbitrary web server readable resources that are of a file type not specific to Lotus. By appending a dot to the requested filename an attacker may disclose sensitive information embedded in server side scripts or include files. Other resources may also be disclosed.