Filtered by vendor Ibm
Subscribe
Total
7122 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-1999-0803 | 1 Ibm | 1 Aix Enetwork Firewall | 2024-02-28 | 2.1 LOW | N/A |
The fwluser script in AIX eNetwork Firewall allows local users to write to arbitrary files via a symlink attack. | |||||
CVE-2000-1216 | 1 Ibm | 1 Aix | 2024-02-28 | 7.2 HIGH | N/A |
Buffer overflow in portmir for AIX 4.3.0 allows local users to corrupt lock files and gain root privileges via the echo_error routine. | |||||
CVE-2003-0827 | 1 Ibm | 1 Db2 Universal Database | 2024-02-28 | 5.0 MEDIUM | N/A |
The DB2 Discovery Service for IBM DB2 before FixPak 10a allows remote attackers to cause a denial of service (crash) via a long packet to UDP port 523. | |||||
CVE-2001-0319 | 1 Ibm | 3 Net.commerce, Net.commerce Hosting Server, Websphere Commerce Suite | 2024-02-28 | 7.5 HIGH | N/A |
orderdspc.d2w macro in IBM Net.Commerce 3.x allows remote attackers to execute arbitrary SQL queries by inserting them into the order_rn option of the report capability. | |||||
CVE-1999-0566 | 1 Ibm | 1 Aix | 2024-02-28 | 5.0 MEDIUM | N/A |
An attacker can write to syslog files from any location, causing a denial of service by filling up the logs, and hiding activities. | |||||
CVE-2002-0745 | 1 Ibm | 1 Aix | 2024-02-28 | 10.0 HIGH | N/A |
Buffer overflow in uucp in AIX 4.3.3. | |||||
CVE-1999-1583 | 1 Ibm | 1 Aix | 2024-02-28 | 7.2 HIGH | N/A |
Buffer overflow in nslookup for AIX 4.3 allows local users to execute arbitrary code via a long hostname command line argument. | |||||
CVE-2000-1123 | 1 Ibm | 1 Aix | 2024-02-28 | 7.2 HIGH | N/A |
Buffer overflow in pioout command in IBM AIX 4.3.x and earlier may allow local users to execute arbitrary commands. | |||||
CVE-2001-0389 | 1 Ibm | 2 Net.commerce, Websphere Application Server | 2024-02-28 | 5.0 MEDIUM | N/A |
IBM Websphere/NetCommerce3 3.1.2 allows remote attackers to determine the real path of the server by directly calling the macro.d2w macro with a NOEXISTINGHTMLBLOCK argument. | |||||
CVE-2003-1018 | 1 Ibm | 1 Aix | 2024-02-28 | 7.2 HIGH | N/A |
Format string vulnerability in enq command in AIX 4.3, 5.1, and 5.2 allows local users with rintq group privileges to gain privileges via unknown attack vectors. | |||||
CVE-1999-0041 | 5 Cray, Gnu, Ibm and 2 more | 6 Unicos, Unicos Max, Libc and 3 more | 2024-02-28 | 7.5 HIGH | N/A |
Buffer overflow in NLS (Natural Language Service). | |||||
CVE-2003-0837 | 1 Ibm | 1 Db2 Universal Database | 2024-02-28 | 7.5 HIGH | N/A |
Stack-based buffer overflow in IBM DB2 Universal Data Base 7.2 for Windows, before Fixpak 10a, allows attackers with "Connect" privileges to execute arbitrary code via the INVOKE command. | |||||
CVE-1999-1013 | 1 Ibm | 1 Aix | 2024-02-28 | 7.2 HIGH | N/A |
named-xfer in AIX 4.1.5 and 4.2.1 allows members of the system group to overwrite system files to gain root access via the -f parameter and a malformed zone file. | |||||
CVE-1999-0018 | 3 Ibm, Sgi, Sun | 4 Aix, Irix, Solaris and 1 more | 2024-02-28 | 10.0 HIGH | N/A |
Buffer overflow in statd allows root privileges. | |||||
CVE-1999-0345 | 4 Freebsd, Ibm, Sco and 1 more | 7 Freebsd, Aix, Sng and 4 more | 2024-02-28 | 5.0 MEDIUM | N/A |
Jolt ICMP attack causes a denial of service in Windows 95 and Windows NT systems. | |||||
CVE-1999-1275 | 1 Ibm | 1 Lotus Cc Mail | 2024-02-28 | 4.6 MEDIUM | N/A |
Lotus cc:Mail release 8 stores the postoffice password in plaintext in a hidden file which has insecure permissions, which allows local users to gain privileges. | |||||
CVE-1999-0628 | 4 Freebsd, Ibm, Linux and 1 more | 4 Freebsd, Aix, Linux Kernel and 1 more | 2024-02-28 | 5.0 MEDIUM | N/A |
The rwho/rwhod service is running, which exposes machine status and user information. | |||||
CVE-1999-0111 | 1 Ibm | 1 Aix | 2024-02-28 | 5.0 MEDIUM | N/A |
RIP v1 is susceptible to spoofing. | |||||
CVE-2003-0579 | 1 Ibm | 1 U2 Universe | 2024-02-28 | 4.6 MEDIUM | N/A |
uvadmsh in IBM U2 UniVerse 10.0.0.9 and earlier trusts the user-supplied -uv.install command line option to find and execute the uv.install program, which allows local users to gain privileges by providing a pathname that is under control of the user. | |||||
CVE-2001-1143 | 1 Ibm | 1 Db2 Universal Database | 2024-02-28 | 5.0 MEDIUM | N/A |
IBM DB2 7.0 allows a remote attacker to cause a denial of service (crash) via a single byte to (1) db2ccs.exe on port 6790, or (2) db2jds.exe on port 6789. |