CVE-2002-2014

Name of the Vulnerable Software and Affected Versions Lotus Domino version 5.0.8

Description The issue allows remote attackers to determine valid user names by analyzing different error messages returned by the web server when a valid or invalid user is provided in HTTP requests. This makes it easier to conduct brute force attacks.

Recommendations For version 5.0.8, consider implementing additional authentication measures or rate limiting to mitigate the risk of brute force attacks. As a temporary workaround, restrict access to the web server to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.