Filtered by vendor Ibm
Subscriptions
Total
7286 CVE
CVE | Vendors | Products | Updated | CVSS v3.1 |
---|---|---|---|---|
CVE-2003-0178 | 1 Ibm | 1 Lotus Domino Web Server | 2024-11-20 | N/A |
Multiple buffer overflows in Lotus Domino Web Server before 6.0.1 allow remote attackers to cause a denial of service or execute arbitrary code via (1) the s_ViewName option in the PresetFields parameter for iNotes, (2) the Foldername option in the PresetFields parameter for iNotes, or (3) a long Host header, which is inserted into a long Location header and used during a redirect operation. | ||||
CVE-2003-0170 | 1 Ibm | 1 Aix | 2024-11-20 | N/A |
Unknown vulnerability in ftpd in IBM AIX 5.2, when configured to use Kerberos 5 for authentication, allows remote attackers to gain privileges via unknown attack vectors. | ||||
CVE-2003-0123 | 1 Ibm | 2 Lotus Domino, Lotus Notes Client | 2024-11-20 | N/A |
Buffer overflow in Web Retriever client for Lotus Notes/Domino R4.5 through R6 allows remote malicious web servers to cause a denial of service (crash) via a long HTTP status line. | ||||
CVE-2003-0122 | 1 Ibm | 2 Lotus Domino, Lotus Notes Client | 2024-11-20 | N/A |
Buffer overflow in Notes server before Lotus Notes R4, R5 before 5.0.11, and early R6 allows remote attackers to execute arbitrary code via a long distinguished name (DN) during NotesRPC authentication and an outer field length that is less than that of the DN field. | ||||
CVE-2003-0119 | 1 Ibm | 1 Aix | 2024-11-20 | N/A |
The secldapclntd daemon in AIX 4.3, 5.1 and 5.2 uses an Internet socket when communicating with the loadmodule, which allows remote attackers to directly connect to the daemon and conduct unauthorized activities. | ||||
CVE-2003-0064 | 4 Hp, Ibm, Sgi and 1 more | 5 Hp-ux, Aix, Irix and 2 more | 2024-11-20 | N/A |
The dtterm terminal emulator allows attackers to modify the window title via a certain character escape sequence and then insert it back to the command line in the user's terminal, e.g. when the user views a file containing the malicious sequence, which could allow the attacker to execute arbitrary commands. | ||||
CVE-2003-0028 | 11 Cray, Freebsd, Gnu and 8 more | 15 Unicos, Freebsd, Glibc and 12 more | 2024-11-20 | N/A |
Integer overflow in the xdrmem_getbytes() function, and possibly other functions, of XDR (external data representation) libraries derived from SunRPC, including libnsl, libc, glibc, and dietlibc, allows remote attackers to execute arbitrary code via certain integer values in length fields, a different vulnerability than CVE-2002-0391. | ||||
CVE-2002-2372 | 1 Ibm | 2 Infoprint, Infoprint 21 | 2024-11-20 | N/A |
The telnet server in Infoprint 21 running controller software before 1.056007 allows remote attackers to cause a denial of service (crash) via a long username, possibly due to a buffer overflow. | ||||
CVE-2002-2025 | 1 Ibm | 1 Lotus Domino Server | 2024-11-20 | N/A |
Lotus Domino server 5.0.9a and earlier allows remote attackers to cause a denial of service by exhausting the number of working threads via a large number of HTTP requests for (1) an MS-DOS device name and (2) an MS-DOS device name with a large number of characters appended to the device name. | ||||
CVE-2002-2014 | 1 Ibm | 1 Lotus Domino | 2024-11-20 | N/A |
Lotus Domino 5.0.8 web server returns different error messages when a valid or invalid user is provided in HTTP requests, which allows remote attackers to determine valid user names and makes it easier to conduct brute force attacks. | ||||
CVE-2002-1822 | 1 Ibm | 1 Http Server | 2024-11-20 | N/A |
IBM HTTP Server 1.0 on AS/400 allows remote attackers to obtain the path to the web root directory and other sensitive information, which is leaked in an error mesage when a request is made for a non-existent Java Server Page (JSP). | ||||
CVE-2002-1731 | 1 Ibm | 1 Os 400 | 2024-11-20 | N/A |
The System Request menu in IBM AS/400 allows local users to list valid user accounts by viewing the object names that are type USRPRF. | ||||
CVE-2002-1690 | 1 Ibm | 1 Aix | 2024-11-20 | N/A |
Unknown vulnerability in AIX before 4.0 with unknown attack vectors and unknown impact, aka "security issue," as fixed by APAR IY28225. | ||||
CVE-2002-1689 | 1 Ibm | 1 Aix | 2024-11-20 | N/A |
Unknown vulnerability in the login program on AIX before 4.0 could allow remote users to specify 100 or more environment variables when logging on, which exceeds the length of a certain string, possibly triggering a buffer overflow. | ||||
CVE-2002-1687 | 1 Ibm | 1 Aix | 2024-11-20 | N/A |
Buffer overflow in the diagnostics library in AIX allows local users to "cause data and instructions to be overwritten" via a long DIAGNOSTICS environment variable. | ||||
CVE-2002-1686 | 1 Ibm | 1 Aix | 2024-11-20 | N/A |
Buffer overflow in lscfg of unknown versions of AIX has unknown impact. | ||||
CVE-2002-1624 | 1 Ibm | 1 Lotus Domino | 2024-11-20 | N/A |
Buffer overflow in Lotus Domino web server before R5.0.10, when logging to DOMLOG.NSF, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long HTTP Authenticate header containing certain non-ASCII characters. | ||||
CVE-2002-1622 | 1 Ibm | 1 Aix | 2024-11-20 | N/A |
Buffer overflow in certain RPC routines in IBM AIX 4.3 may allow attackers to execute arbitrary code, related to a "variable data type." | ||||
CVE-2002-1621 | 1 Ibm | 1 Aix | 2024-11-20 | N/A |
Buffer overflow in the file_comp function in rcp for IBM AIX 4.3.x and 5.1 allows remote attackers to execute arbitrary code. | ||||
CVE-2002-1620 | 1 Ibm | 1 Aix Parallel Systems Support Programs | 2024-11-20 | N/A |
Unknown vulnerability in IBM AIX Parallel Systems Support Programs (PSSP) 3.1.1, 3.2, and 3.4 allows remote attackers to read arbitrary files from a file collection. |