[原文]Lotus Domino 5.0.5 and 5.0.8, and possibly other versions, allows remote attackers to cause a denial of service (block access to databases that have not been previously accessed) via a URL that includes the . (dot) directory.
Lotus Domino Web Server contains a flaw that may allow a REMOTE denial of service. The issue is triggered when a database not currently in use us called from a web browser with a /./ in the URL path, and will result in loss of availability for the specific database.
Upgrade to version 5.0.9 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.