Re: KPMG-2002006: Lotus Domino Physical Path Revealed

From: Joe Testa (jst3290at_private)
Date: Tue Apr 02 2002 - 12:07:53 PST

Next message: Andreas Sandblad: "Re: Winamp: Mp3 file can control the minibrowser"

Previous message: Adam McKenna: "Re: SQL injection in PHPGroupware"
In reply to: Peter Gründl: "KPMG-2002006: Lotus Domino Physical Path Revealed"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

 > Vulnerable:
 > ===========
 > - Lotus Domino 5.0.9 on Windows 2000 Server
 > - Lotus Domino 5.0.9a on Windows 2000 Server
 > - Older versions were not tested, but are likely to be vulnerable


Confirmed on Windows NT 4.0 Server with Lotus Domino 4.6.2a:

Error 500
Execution of Perl script c:\notes\data\domino\cgi-bin\com5.pl failed. 
Error = 2

Lotus-Domino/Release-4.6.2a



    - Joe Testa


GPG key:  http://www.cs.rit.edu/~jst3290/joetesta_r7.pub
A22B 2683 C40E 5443 AE52  AD6D 65B2 F5DF 4B11 06B4

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.6 (GNU/Linux)
Comment: For info see http://www.gnupg.org

iD8DBQE8qg7+ZbL130sRBrQRAqGLAJ9tQmJ7cAwOfq6LbFd30HjmNtV7KQCeI+HW
zw0ybiwb64NFvBBFoBWtzS4=
=nc09
-----END PGP SIGNATURE-----

Next message: Andreas Sandblad: "Re: Winamp: Mp3 file can control the minibrowser"
Previous message: Adam McKenna: "Re: SQL injection in PHPGroupware"
In reply to: Peter Gründl: "KPMG-2002006: Lotus Domino Physical Path Revealed"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Wed Apr 03 2002 - 21:45:36 PST