IBM : Security Vulnerabilities, CVEs, Published In November 2004

CVE-2004-0828

The ctstrtcasd program in RSCT 2.3.0.0 and earlier on IBM AIX 5.2 and 5.3 does not properly drop privileges before executing the -f option, which allows local users to modify or create arbitrary files.
Max CVSS
2.1
EPSS Score
0.04%
Published
2004-11-03
Updated
2017-07-11

CVE-2004-0263

PHP 4.3.4 and earlier in Apache 1.x and 2.x (mod_php) can leak global variables between virtual hosts that are handled by the same Apache child process but have different settings, which could allow remote attackers to obtain sensitive information.
Max CVSS
5.0
EPSS Score
0.30%
Published
2004-11-23
Updated
2017-10-10

CVE-2004-0253

IBM Cloudscape 5.1 running jdk 1.4.2_03 allows remote attackers to execute arbitrary programs or cause a denial of service via certain SQL code, possibly due to a SQL injection vulnerability.
Max CVSS
10.0
EPSS Score
0.33%
Published
2004-11-23
Updated
2017-07-11

CVE-2004-0243

AIX 4.3.3 through AIX 5.1, when direct remote login is disabled, displays a different message if the password is correct, which allows remote attackers to guess the password via brute force methods.
Max CVSS
5.0
EPSS Score
0.19%
Published
2004-11-23
Updated
2017-07-11
4 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!
Accept Close