Multiple unspecified vulnerabilities in osp-cert in IBM OS/400 V5R3M0 have unspecified impact and attack vectors, related to ASN.1 parsing.
Max CVSS
10.0
EPSS Score
0.16%
Published
2006-12-31
Updated
2008-09-05
Unspecified vulnerability in the Utility Classes for IBM WebSphere Application Server (WAS) before 5.1.1.13 and 6.x before 6.0.2.17 has unknown impact and attack vectors.
Max CVSS
10.0
EPSS Score
2.03%
Published
2006-12-19
Updated
2017-07-29
IBM WebSphere Host On-Demand 6.0, 7.0, 8.0, 9.0, and possibly 10, allows remote attackers to bypass authentication via a modified pnl parameter, related to hod/HODAdmin.html and hod/frameset.html.
Max CVSS
7.5
EPSS Score
1.92%
Published
2006-12-14
Updated
2018-10-17
Multiple array index errors in IBM Tivoli Storage Manager (TSM) before 5.2.9 and 5.3.x before 5.3.4 allow remote attackers to read arbitrary memory locations and cause a denial of service (crash) via a large index value in unspecified messages, a different issue than CVE-2006-5855.
Max CVSS
7.5
EPSS Score
5.25%
Published
2006-12-06
Updated
2018-10-17
IBM WebSphere Application Server 6.1.0 before Fix Pack 3 (6.1.0.3) does not perform EAL4 authentication checks at the proper time during "registering of response operation," which has unknown impact and attack vectors.
Max CVSS
10.0
EPSS Score
0.39%
Published
2006-11-28
Updated
2011-03-08
Multiple unspecified vulnerabilities in IBM WebSphere Application Server 6.1.0 before Fix Pack 3 (6.1.0.3) have unknown impact and attack vectors, related to (1) a "Potential security vulnerability" (PK29725) and (2) "Potential security exposure" (PK30831).
Max CVSS
10.0
EPSS Score
0.49%
Published
2006-11-28
Updated
2011-03-08
Multiple buffer overflows in IBM Tivoli Storage Manager (TSM) before 5.2.9 and 5.3.x before 5.3.4 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long string in (1) the language field at logon that begins with a 0x18 byte, (2) two unspecified parameters to the SmExecuteWdsfSession function, and (3) the contact field in an open registration message.
Max CVSS
10.0
EPSS Score
96.37%
Published
2006-12-06
Updated
2018-10-17
Multiple buffer overflows in tunekrnl in IBM Lotus Domino 6.x before 6.5.5 FP2 and 7.x before 7.0.2 allow local users to gain privileges and execute arbitrary code via unspecified vectors.
Max CVSS
7.2
EPSS Score
0.04%
Published
2006-11-08
Updated
2017-07-20
The Web Services Notification (WSN) security component of IBM WebSphere Application Server before 6.1.0.2 allows attackers to obtain unspecified access without supplying a username and password, aka PK28374.
Max CVSS
7.5
EPSS Score
0.60%
Published
2006-10-17
Updated
2011-03-08
Unspecified vulnerability in IBM WebSphere Application Server before 6.1.0.2 has unspecified impact and attack vectors, related to a "possible security exposure," aka PK29360.
Max CVSS
10.0
EPSS Score
0.54%
Published
2006-10-17
Updated
2011-03-08
Untrusted search path vulnerability in snappd in IBM AIX 5.2.0 and 5.3.0 allows local users to execute arbitrary commands via a Trojan horse program, involving the "system subroutine".
Max CVSS
7.2
EPSS Score
0.04%
Published
2006-09-27
Updated
2017-07-20
Untrusted search path vulnerability in acctctl in IBM AIX 5.3.0 allows local users to execute arbitrary commands by modifying the path to point to a malicious mkdir program.
Max CVSS
7.2
EPSS Score
0.04%
Published
2006-09-27
Updated
2017-07-20
Unspecified vulnerability in xlock in IBM AIX 5.2.0 and 5.3.0 allows local users to execute arbitrary commands and overwrite arbitrary files via unspecified vectors, possibly involving a buffer overflow.
Max CVSS
7.2
EPSS Score
0.04%
Published
2006-09-27
Updated
2017-07-20
Unspecified vulnerability in utape in IBM AIX 5.2.0 and 5.3.0 allows attackers to execute arbitrary commands and overwrite arbitrary files via unspecified vectors.
Max CVSS
10.0
EPSS Score
1.27%
Published
2006-09-27
Updated
2017-07-20
Buffer overflow in cfgmgr in IBM AIX 5.2.0 and 5.3.0 allows local users to execute arbitrary code via a long directory path argument.
Max CVSS
7.2
EPSS Score
0.04%
Published
2006-09-27
Updated
2017-07-20
Unspecified vulnerability in bos.net.tcp.client in IBM AIX 5.2.0 and 5.3.0 allows local users to execute arbitrary commands via unspecified vectors involving /etc/slip.login.
Max CVSS
7.2
EPSS Score
0.04%
Published
2006-09-27
Updated
2017-07-20
Unspecified vulnerability in the named8 command in IBM AIX 5.2.0 and 5.3.0 allows local users to execute arbitrary commands via unspecified vectors.
Max CVSS
7.2
EPSS Score
0.04%
Published
2006-09-27
Updated
2017-07-20
IBM Lotus Domino Web Access (DWA) 7.0.1 does not expire a client's Lightweight Third-Party Authentication token (LtpaToken) upon logout, which allows remote attackers to obtain a user's privileges by intercepting the LtpaToken cookie.
Max CVSS
7.5
EPSS Score
2.09%
Published
2006-09-13
Updated
2018-10-17
Unspecified vulnerability in dtterm in IBM AIX 5.2 and 5.3 allows local users to execute arbitrary code with root privileges via unspecified vectors.
Max CVSS
7.2
EPSS Score
0.04%
Published
2006-09-01
Updated
2011-03-08
Untrusted search path vulnerability in the mkvg command in IBM AIX 5.2 and 5.3 allows local users to gain privileges by modifying the path to point to a malicious (1) chdev, (2) mkboot, (3) varyonvg, or (4) varyoffvg program.
Max CVSS
7.2
EPSS Score
0.04%
Published
2006-08-28
Updated
2017-07-20
Unspecified vulnerability in setlocale in IBM AIX 5.1.0 through 5.3.0 allows local users to gain privileges via unspecified vectors.
Max CVSS
7.5
EPSS Score
1.09%
Published
2006-08-21
Updated
2017-07-20
Stack-based buffer overflow in the IBM Access Support eGatherer ActiveX control before 3.20.0284.0 allows remote attackers to execute arbitrary code via a long filename parameter to the RunEgatherer method.
Max CVSS
9.3
EPSS Score
89.08%
Published
2006-08-18
Updated
2018-10-17
Multiple unspecified vulnerabilities in IBM WebSphere Application Server before 6.1.0.1 have unspecified impact and attack vectors involving (1) "SOAP requests and responses", (2) mbean, (3) ThreadIdentitySupport, and possibly others.
Max CVSS
7.5
EPSS Score
0.69%
Published
2006-08-14
Updated
2011-03-08
Buffer overflow in IBM Informix Dynamic Server (IDS) 9.40.TC5 through 9.40.xC7 and 10.00.TC1 through 10.00.xC3 allows attackers to execute arbitrary code via the SQLIDEBUG environment variable (envariable).
Max CVSS
7.5
EPSS Score
3.24%
Published
2006-08-08
Updated
2018-10-17
IBM Informix Dynamic Server (IDS) before 9.40.xC7 and 10.00 before 10.00.xC3 allows allows remote authenticated users to execute arbitrary commands via the (1) "SET DEBUG FILE" SQL command, and the (2) start_onpload and (3) dbexp functions.
Max CVSS
7.5
EPSS Score
1.68%
Published
2006-08-17
Updated
2018-10-17
37 vulnerabilities found
1 2
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!