Filtered by vendor Ibm Subscriptions
Total 7155 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2000-1120 1 Ibm 1 Aix 2024-08-08 N/A
Buffer overflow in digest command in IBM AIX 4.3.x and earlier allows local users to execute arbitrary commands.
CVE-2000-1138 1 Ibm 1 Lotus Notes 2024-08-08 N/A
Lotus Notes R5 client R5.0.5 and earlier does not properly warn users when an S/MIME email message has been modified, which could allow an attacker to modify the email in transit without being detected.
CVE-2000-1038 1 Ibm 1 As400 Firewall 2024-08-08 N/A
The web administration interface for IBM AS/400 Firewall allows remote attackers to cause a denial of service via an empty GET request.
CVE-2000-0891 1 Ibm 1 Lotus Notes 2024-08-08 N/A
A default ECL in Lotus Notes before 5.02 allows remote attackers to execute arbitrary commands by attaching a malicious program in an email message that is automatically executed when the user opens the email.
CVE-2000-0873 1 Ibm 1 Aix 2024-08-08 N/A
netstat in AIX 4.x.x does not properly restrict access to the -Zi option, which allows local users to clear network interface statistics and possibly hide evidence of unusual network activities.
CVE-2000-0844 13 Caldera, Conectiva, Debian and 10 more 16 Openlinux, Openlinux Ebuilder, Openlinux Eserver and 13 more 2024-08-08 N/A
Some functions that implement the locale subsystem on Unix do not properly cleanse user-injected format strings, which allows local attackers to execute arbitrary commands via functions such as gettext and catopen.
CVE-2000-0848 1 Ibm 1 Websphere Application Server 2024-08-08 N/A
Buffer overflow in IBM WebSphere web application server (WAS) allows remote attackers to execute arbitrary commands via a long Host: request header.
CVE-2000-0761 1 Ibm 1 Os2 Ftp Server 2024-08-08 N/A
OS2/Warp 4.5 FTP server allows remote attackers to cause a denial of service via a long username.
CVE-2000-0652 1 Ibm 1 Websphere Application Server 2024-08-08 N/A
IBM WebSphere allows remote attackers to read source code for executable web files by directly calling the default InvokerServlet using a URL which contains the "/servlet/file" string.
CVE-2000-0677 1 Ibm 1 Net.data 2024-08-08 N/A
Buffer overflow in IBM Net.Data db2www CGI program allows remote attackers to execute arbitrary commands via a long PATH_INFO environmental variable.
CVE-2000-0505 2 Apache, Ibm 2 Http Server, Http Server 2024-08-08 N/A
The Apache 1.3.x HTTP server for Windows platforms allows remote attackers to list directory contents by requesting a URL containing a large number of / characters.
CVE-2000-0497 1 Ibm 1 Websphere Application Server 2024-08-08 7.5 High
IBM WebSphere server 3.0.2 allows a remote attacker to view source code of a JSP program by requesting a URL which provides the JSP extension in upper case.
CVE-2000-0466 1 Ibm 1 Aix 2024-08-08 N/A
AIX cdmount allows local users to gain root privileges via shell metacharacters.
CVE-2000-0441 1 Ibm 1 Aix 2024-08-08 N/A
Vulnerability in AIX 3.2.x and 4.x allows local users to gain write access to files on locally or remotely mounted AIX filesystems.
CVE-2000-0249 1 Ibm 1 Aix 2024-08-08 N/A
The AIX Fast Response Cache Accelerator (FRCA) allows local users to modify arbitrary files via the configuration capability in the frcactrl program.
CVE-2000-0080 1 Ibm 1 Aix 2024-08-08 N/A
AIX techlibss allows local users to overwrite files via a symlink attack.
CVE-2001-1440 1 Ibm 1 Aix 2024-08-08 N/A
Unknown vulnerability in login for AIX 5.1L, when using loadable authentication modules, allows remote attackers to gain access to the system.
CVE-2001-1554 1 Ibm 1 Aix 2024-08-08 N/A
IBM AIX 430 does not properly unlock IPPMTU_LOCK, which allows remote attackers to cause a denial of service (hang) via Path Maximum Transmit Unit (PMTU) IP packets.
CVE-2001-1441 1 Ibm 1 Visualage For Java 2024-08-08 N/A
Cross-site scripting (XSS) vulnerability in VisualAge for Java 3.5 Professional allows remote attackers to execute JavaScript on other clients via the URL, which injects the script in the resulting error message.
CVE-2001-1567 1 Ibm 2 Lotus Domino, Lotus Domino Server 2024-08-08 N/A
Lotus Domino server 5.0.9a and earlier allows remote attackers to bypass security restrictions and view Notes database files and possibly sensitive Notes template files (.ntf) via an HTTP request with a large number of "+" characters before the .nsf file extension, which are converted to spaces by Domino.