Filtered by vendor Ibm
Subscriptions
Total
7537 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2001-0554 | 10 Debian, Freebsd, Ibm and 7 more | 12 Debian Linux, Freebsd, Aix and 9 more | 2024-11-20 | N/A |
| Buffer overflow in BSD-based telnetd telnet daemon on various operating systems allows remote attackers to execute arbitrary commands via a set of options including AYT (Are You There), which is not properly handled by the telrcv function. | ||||
| CVE-2001-0552 | 2 Hp, Ibm | 2 Openview Network Node Manager, Tivoli Netview | 2024-11-20 | N/A |
| ovactiond in HP OpenView Network Node Manager (NNM) 6.1 and Tivoli Netview 5.x and 6.x allows remote attackers to execute arbitrary commands via shell metacharacters in a certain SNMP trap message. | ||||
| CVE-2001-0533 | 1 Ibm | 1 Aix | 2024-11-20 | N/A |
| Buffer overflow in libi18n library in IBM AIX 5.1 and 4.3.x allows local users to gain root privileges via a long LANG environmental variable. | ||||
| CVE-2001-0487 | 1 Ibm | 1 Aix Snmp | 2024-11-20 | N/A |
| AIX SNMP server snmpd allows remote attackers to cause a denial of service via a RST during the TCP connection. | ||||
| CVE-2001-0472 | 1 Ibm | 1 High Availability Cluster Multiprocessing | 2024-11-20 | N/A |
| Hursley Software Laboratories Consumer Transaction Framework (HSLCTF) HTTP object allows remote attackers to cause a denial of service (crash) via an extremely long HTTP request. | ||||
| CVE-2001-0446 | 1 Ibm | 1 Websphere Commerce Suite | 2024-11-20 | N/A |
| IBM WCS (WebSphere Commerce Suite) 4.0.1 with Application Server 3.0.2 allows remote attackers to read source code for .jsp files by appending a / to the requested URL. | ||||
| CVE-2001-0390 | 1 Ibm | 3 Net.commerce, Net.commerce Hosting Server, Websphere Application Server | 2024-11-20 | N/A |
| IBM Websphere/NetCommerce3 3.1.2 allows remote attackers to cause a denial of service by directly calling the macro.d2w macro with a long string of %0a characters. | ||||
| CVE-2001-0389 | 1 Ibm | 2 Net.commerce, Websphere Application Server | 2024-11-20 | N/A |
| IBM Websphere/NetCommerce3 3.1.2 allows remote attackers to determine the real path of the server by directly calling the macro.d2w macro with a NOEXISTINGHTMLBLOCK argument. | ||||
| CVE-2001-0319 | 1 Ibm | 3 Net.commerce, Net.commerce Hosting Server, Websphere Commerce Suite | 2024-11-20 | N/A |
| orderdspc.d2w macro in IBM Net.Commerce 3.x allows remote attackers to execute arbitrary SQL queries by inserting them into the order_rn option of the report capability. | ||||
| CVE-2001-0312 | 1 Ibm | 1 Websphere Plugin | 2024-11-20 | N/A |
| IBM WebSphere plugin for Netscape Enterprise server allows remote attackers to read source code for JSP files via an HTTP request that contains a host header that references a host that is not in WebSphere's host aliases list, which will bypass WebSphere processing. | ||||
| CVE-2001-0122 | 1 Ibm | 2 Http Server, Websphere Application Server | 2024-11-20 | N/A |
| Kernel leak in AfpaCache module of the Fast Response Cache Accelerator (FRCA) component of IBM HTTP Server 1.3.x and Websphere 3.52 allows remote attackers to cause a denial of service via a series of malformed HTTP requests that generate a "bad request" error. | ||||
| CVE-2001-0052 | 1 Ibm | 1 Db2 Universal Database | 2024-11-20 | N/A |
| IBM DB2 Universal Database version 6.1 allows users to cause a denial of service via a malformed query. | ||||
| CVE-2001-0051 | 1 Ibm | 1 Db2 Universal Database | 2024-11-20 | N/A |
| IBM DB2 Universal Database version 6.1 creates an account with a default user name and password, which allows remote attackers to gain access to the database. | ||||
| CVE-2000-1239 | 1 Ibm | 1 Tivoli Management Framework | 2024-11-20 | N/A |
| The HTTP interface of Tivoli Lightweight Client Framework (LCF) in IBM Tivoli Management Framework 3.7.1 sets http_disable to zero at install time, which allows remote authenticated users to bypass file permissions on Tivoli Endpoint Configuration data files via an unspecified manipulation of log files. | ||||
| CVE-2000-1222 | 1 Ibm | 1 Aix | 2024-11-20 | N/A |
| AIX sysback before 4.2.1.13 uses a relative path to find and execute the hostname program, which allows local users to gain privileges by modifying the path to point to a malicious hostname program. | ||||
| CVE-2000-1216 | 1 Ibm | 1 Aix | 2024-11-20 | N/A |
| Buffer overflow in portmir for AIX 4.3.0 allows local users to corrupt lock files and gain root privileges via the echo_error routine. | ||||
| CVE-2000-1215 | 1 Ibm | 1 Lotus Domino | 2024-11-20 | N/A |
| The default configuration of Lotus Domino server 5.0.8 includes system information (version, operating system, and build date) in the HTTP headers of replies, which allows remote attackers to obtain sensitive information. | ||||
| CVE-2000-1202 | 1 Ibm | 1 Http Server Ssl Module Common | 2024-11-20 | N/A |
| ikeyman in IBM IBMHSSSB 1.0 sets the CLASSPATH environmental variable to include the user's own CLASSPATH directories before the system's directories, which allows a malicious local user to execute arbitrary code as root via a Trojan horse Ikeyman class. | ||||
| CVE-2000-1168 | 1 Ibm | 1 Http Server | 2024-11-20 | N/A |
| IBM HTTP Server 1.3.6 (based on Apache) allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long GET request. | ||||
| CVE-2000-1138 | 1 Ibm | 1 Lotus Notes | 2024-11-20 | N/A |
| Lotus Notes R5 client R5.0.5 and earlier does not properly warn users when an S/MIME email message has been modified, which could allow an attacker to modify the email in transit without being detected. | ||||