Filtered by vendor Ibm
Subscriptions
Total
7286 CVE
CVE | Vendors | Products | Updated | CVSS v3.1 |
---|---|---|---|---|
CVE-2001-0924 | 1 Ibm | 1 Informix Web Datablade | 2024-11-20 | N/A |
Directory traversal vulnerability in ifx CGI program in Informix Web DataBlade allows remote attackers to read arbitrary files via a .. (dot dot) in the LO parameter. | ||||
CVE-2001-0856 | 1 Ibm | 1 4758 | 2024-11-20 | N/A |
Common Cryptographic Architecture (CCA) in IBM 4758 allows an attacker with physical access to the system and Combine_Key_Parts permissions, to steal DES and 3DES keys by using a brute force attack to create a 3DES exporter key. | ||||
CVE-2001-0824 | 1 Ibm | 1 Websphere Application Server | 2024-11-20 | N/A |
Cross-site scripting vulnerability in IBM WebSphere 3.02 and 3.5 FP2 allows remote attackers to execute Javascript by inserting the Javascript into (1) a request for a .JSP file, or (2) a request to the webapp/examples/ directory, which inserts the Javascript into an error page. | ||||
CVE-2001-0797 | 5 Hp, Ibm, Sco and 2 more | 6 Hp-ux, Aix, Openserver and 3 more | 2024-11-20 | N/A |
Buffer overflow in login in various System V based operating systems allows remote attackers to execute arbitrary commands via a large number of arguments through services such as telnet and rlogin. | ||||
CVE-2001-0671 | 1 Ibm | 1 Aix | 2024-11-20 | N/A |
Buffer overflows in (1) send_status, (2) kill_print, and (3) chk_fhost in lpd in AIX 4.3 and 5.1 allow remote attackers to gain root privileges. | ||||
CVE-2001-0573 | 1 Ibm | 1 Aix | 2024-11-20 | N/A |
lsfs in AIX 4.x allows a local user to gain additional privileges by creating Trojan horse programs named (1) grep or (2) lslv in a certain directory that is under the user's control, which cause lsfs to access the programs in that directory. | ||||
CVE-2001-0554 | 10 Debian, Freebsd, Ibm and 7 more | 12 Debian Linux, Freebsd, Aix and 9 more | 2024-11-20 | N/A |
Buffer overflow in BSD-based telnetd telnet daemon on various operating systems allows remote attackers to execute arbitrary commands via a set of options including AYT (Are You There), which is not properly handled by the telrcv function. | ||||
CVE-2001-0552 | 2 Hp, Ibm | 2 Openview Network Node Manager, Tivoli Netview | 2024-11-20 | N/A |
ovactiond in HP OpenView Network Node Manager (NNM) 6.1 and Tivoli Netview 5.x and 6.x allows remote attackers to execute arbitrary commands via shell metacharacters in a certain SNMP trap message. | ||||
CVE-2001-0533 | 1 Ibm | 1 Aix | 2024-11-20 | N/A |
Buffer overflow in libi18n library in IBM AIX 5.1 and 4.3.x allows local users to gain root privileges via a long LANG environmental variable. | ||||
CVE-2001-0487 | 1 Ibm | 1 Aix Snmp | 2024-11-20 | N/A |
AIX SNMP server snmpd allows remote attackers to cause a denial of service via a RST during the TCP connection. | ||||
CVE-2001-0472 | 1 Ibm | 1 High Availability Cluster Multiprocessing | 2024-11-20 | N/A |
Hursley Software Laboratories Consumer Transaction Framework (HSLCTF) HTTP object allows remote attackers to cause a denial of service (crash) via an extremely long HTTP request. | ||||
CVE-2001-0446 | 1 Ibm | 1 Websphere Commerce Suite | 2024-11-20 | N/A |
IBM WCS (WebSphere Commerce Suite) 4.0.1 with Application Server 3.0.2 allows remote attackers to read source code for .jsp files by appending a / to the requested URL. | ||||
CVE-2001-0390 | 1 Ibm | 3 Net.commerce, Net.commerce Hosting Server, Websphere Application Server | 2024-11-20 | N/A |
IBM Websphere/NetCommerce3 3.1.2 allows remote attackers to cause a denial of service by directly calling the macro.d2w macro with a long string of %0a characters. | ||||
CVE-2001-0389 | 1 Ibm | 2 Net.commerce, Websphere Application Server | 2024-11-20 | N/A |
IBM Websphere/NetCommerce3 3.1.2 allows remote attackers to determine the real path of the server by directly calling the macro.d2w macro with a NOEXISTINGHTMLBLOCK argument. | ||||
CVE-2001-0319 | 1 Ibm | 3 Net.commerce, Net.commerce Hosting Server, Websphere Commerce Suite | 2024-11-20 | N/A |
orderdspc.d2w macro in IBM Net.Commerce 3.x allows remote attackers to execute arbitrary SQL queries by inserting them into the order_rn option of the report capability. | ||||
CVE-2001-0312 | 1 Ibm | 1 Websphere Plugin | 2024-11-20 | N/A |
IBM WebSphere plugin for Netscape Enterprise server allows remote attackers to read source code for JSP files via an HTTP request that contains a host header that references a host that is not in WebSphere's host aliases list, which will bypass WebSphere processing. | ||||
CVE-2001-0122 | 1 Ibm | 2 Http Server, Websphere Application Server | 2024-11-20 | N/A |
Kernel leak in AfpaCache module of the Fast Response Cache Accelerator (FRCA) component of IBM HTTP Server 1.3.x and Websphere 3.52 allows remote attackers to cause a denial of service via a series of malformed HTTP requests that generate a "bad request" error. | ||||
CVE-2001-0052 | 1 Ibm | 1 Db2 Universal Database | 2024-11-20 | N/A |
IBM DB2 Universal Database version 6.1 allows users to cause a denial of service via a malformed query. | ||||
CVE-2001-0051 | 1 Ibm | 1 Db2 Universal Database | 2024-11-20 | N/A |
IBM DB2 Universal Database version 6.1 creates an account with a default user name and password, which allows remote attackers to gain access to the database. | ||||
CVE-2000-1239 | 1 Ibm | 1 Tivoli Management Framework | 2024-11-20 | N/A |
The HTTP interface of Tivoli Lightweight Client Framework (LCF) in IBM Tivoli Management Framework 3.7.1 sets http_disable to zero at install time, which allows remote authenticated users to bypass file permissions on Tivoli Endpoint Configuration data files via an unspecified manipulation of log files. |