Filtered by vendor Ibm
Subscriptions
Total
7537 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2001-1310 | 1 Ibm | 1 Secureway Directory | 2024-11-20 | N/A |
| IBM SecureWay 3.2.1 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code, via invalid encodings for the L field of a BER encoding, as demonstrated by the PROTOS LDAPv3 test suite. | ||||
| CVE-2001-1309 | 1 Ibm | 1 Secureway Directory | 2024-11-20 | N/A |
| Buffer overflows in IBM SecureWay 3.2.1 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code, as demonstrated by the PROTOS LDAPv3 test suite. | ||||
| CVE-2001-1265 | 1 Ibm | 1 Alphaworks Tftp Server | 2024-11-20 | N/A |
| Directory traversal vulnerability in IBM alphaWorks Java TFTP server 1.21 allows remote attackers to conduct unauthorized operations on arbitrary files via a .. (dot dot) attack. | ||||
| CVE-2001-1191 | 1 Ibm | 1 Tivoli Secureway Policy Director | 2024-11-20 | N/A |
| WebSeal in IBM Tivoli SecureWay Policy Director 3.8 allows remote attackers to cause a denial of service (crash) via a URL that ends in %2e. | ||||
| CVE-2001-1189 | 1 Ibm | 1 Websphere Application Server | 2024-11-20 | N/A |
| IBM Websphere Application Server 3.5.3 and earlier stores a password in cleartext in the sas.server.props file, which allows local users to obtain the passwords via a JSP script. | ||||
| CVE-2001-1143 | 1 Ibm | 1 Db2 Universal Database | 2024-11-20 | N/A |
| IBM DB2 7.0 allows a remote attacker to cause a denial of service (crash) via a single byte to (1) db2ccs.exe on port 6790, or (2) db2jds.exe on port 6789. | ||||
| CVE-2001-1096 | 1 Ibm | 1 Aix | 2024-11-20 | N/A |
| Buffer overflows in muxatmd in AIX 4 allows an attacker to cause a core dump and possibly execute code. | ||||
| CVE-2001-1095 | 1 Ibm | 1 Aix | 2024-11-20 | N/A |
| Buffer overflow in uuq in AIX 4 could allow local users to execute arbitrary code via a long -r parameter. | ||||
| CVE-2001-1080 | 1 Ibm | 1 Aix | 2024-11-20 | N/A |
| diagrpt in AIX 4.3.x and 5.1 uses the DIAGDATADIR environment variable to find and execute certain programs, which allows local users to gain privileges by modifying the variable to point to a Trojan horse program. | ||||
| CVE-2001-1079 | 1 Ibm | 1 Aix | 2024-11-20 | N/A |
| create_keyfiles in PSSP 3.2 with DCE 3.1 authentication on AIX creates keyfile directories with world-writable permissions, which could allow a local user to delete key files and cause a denial of service. | ||||
| CVE-2001-1061 | 1 Ibm | 1 Aix | 2024-11-20 | N/A |
| Vulnerability in lsmcode in unknown versions of AIX, possibly related to a usage error. | ||||
| CVE-2001-0998 | 1 Ibm | 2 Aix, Hacmp | 2024-11-20 | N/A |
| IBM HACMP 4.4 allows remote attackers to cause a denial of service via a completed TCP connection to HACMP ports (e.g., using a port scan) that does not send additional data, which causes a failure in snmpd. | ||||
| CVE-2001-0982 | 1 Ibm | 1 Tivoli Secureway Policy Director | 2024-11-20 | N/A |
| Directory traversal vulnerability in IBM Tivoli WebSEAL Policy Director 3.01 through 3.7.1 allows remote attackers to read arbitrary files or directories via encoded .. (dot dot) sequences containing "%2e" strings. | ||||
| CVE-2001-0962 | 1 Ibm | 2 Websphere Application Server, Websphere Commerce Suite | 2024-11-20 | N/A |
| IBM WebSphere Application Server 3.02 through 3.53 uses predictable session IDs for cookies, which allows remote attackers to gain privileges of WebSphere users via brute force guessing. | ||||
| CVE-2001-0924 | 1 Ibm | 1 Informix Web Datablade | 2024-11-20 | N/A |
| Directory traversal vulnerability in ifx CGI program in Informix Web DataBlade allows remote attackers to read arbitrary files via a .. (dot dot) in the LO parameter. | ||||
| CVE-2001-0856 | 1 Ibm | 1 4758 | 2024-11-20 | N/A |
| Common Cryptographic Architecture (CCA) in IBM 4758 allows an attacker with physical access to the system and Combine_Key_Parts permissions, to steal DES and 3DES keys by using a brute force attack to create a 3DES exporter key. | ||||
| CVE-2001-0824 | 1 Ibm | 1 Websphere Application Server | 2024-11-20 | N/A |
| Cross-site scripting vulnerability in IBM WebSphere 3.02 and 3.5 FP2 allows remote attackers to execute Javascript by inserting the Javascript into (1) a request for a .JSP file, or (2) a request to the webapp/examples/ directory, which inserts the Javascript into an error page. | ||||
| CVE-2001-0797 | 5 Hp, Ibm, Sco and 2 more | 6 Hp-ux, Aix, Openserver and 3 more | 2024-11-20 | N/A |
| Buffer overflow in login in various System V based operating systems allows remote attackers to execute arbitrary commands via a large number of arguments through services such as telnet and rlogin. | ||||
| CVE-2001-0671 | 1 Ibm | 1 Aix | 2024-11-20 | N/A |
| Buffer overflows in (1) send_status, (2) kill_print, and (3) chk_fhost in lpd in AIX 4.3 and 5.1 allow remote attackers to gain root privileges. | ||||
| CVE-2001-0573 | 1 Ibm | 1 Aix | 2024-11-20 | N/A |
| lsfs in AIX 4.x allows a local user to gain additional privileges by creating Trojan horse programs named (1) grep or (2) lslv in a certain directory that is under the user's control, which cause lsfs to access the programs in that directory. | ||||