Vulnerability Development mailing list archives

Re: Lotus Domino 5.0.5 Web Server vulnerability - reading filesoutside the web root

From: Blue Boar <BlueBoar () THIEVCO COM>
Date: Wed, 10 Jan 2001 08:49:30 -0800

Anyone know if the Notes web server speaks Unicode?

                                        BB

Stefan Schmidt wrote:


You can temporarily fix the problem by creating a file protection. Protect
/.nsf/../ and set Default to no access. Also protect .ns4 and .box
The file protection will give You a login-prompt.

Current thread:

Re: Lotus Domino 5.0.5 Web Server vulnerability - reading files outside the web root Stefan Schmidt (Jan 09)
- Re: Lotus Domino 5.0.5 Web Server vulnerability - reading filesoutside the web root Blue Boar (Jan 10)
- <Possible follow-ups>
- Re: Lotus Domino 5.0.5 Web Server vulnerability - reading files outside the web root Ninke Westra (Jan 10)