CVE-2000-1117

N/A Unknown

Published: January 09, 2001 Modified: April 16, 2026

Description

The Extended Control List (ECL) feature of the Java Virtual Machine (JVM) in Lotus Notes Client R5 allows malicious web site operators to determine the existence of files on the client by measuring delays in the execution of the getSystemResource method.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Login to generate AI explanation

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://archives.neohapsis.com/archives/bugtraq/2000-11/0341.html

Source: cve@mitre.org

Broken Link

http://www.securityfocus.com/bid/1994

Source: cve@mitre.org

Broken Link Exploit Third Party Advisory VDB Entry Vendor Advisory

http://archives.neohapsis.com/archives/bugtraq/2000-11/0341.html

Source: af854a3a-2127-422b-91ae-364da2661108

Broken Link

http://www.securityfocus.com/bid/1994

Source: af854a3a-2127-422b-91ae-364da2661108

Broken Link Exploit Third Party Advisory VDB Entry Vendor Advisory

4 reference(s) from NVD

Quick Stats

CVSS v3 Score

N/A / 10.0

EPSS (Exploit Probability)

1.3%

80th percentile

Exploitation Status

Not in CISA KEV

Weaknesses (CWE)

CWE-203

Affected Vendors

ibm

Related CVEs

CVE-2026-41242 N/A

CVE-2026-40948 N/A

CVE-2026-2986 6.4

CVE-2026-2505 5.4

CVE-2026-0894 6.4