Vulnerabilities (CVE)

Vendor filter

Ibm Subscribe

Product filter

Domino Subscribe

Filter

4671 total CVE
CVE Vendors Products Updated CVSS
CVE-1999-0048 3 Ibm, Debian, Nec 5 Up-ux V, Aix, Asl Ux 4800 and 2 more 2008-09-09 10.0
Talkd, when given corrupt DNS information, can be used to execute arbitrary commands with root privileges.
CVE-1999-0042 5 Bsdi, Ibm, University Of Washington and 2 more 6 Aix, Pop, Bsd Os and 3 more 2008-09-09 10.0
Buffer overflow in University of Washington's implementation of IMAP and POP servers.
CVE-1999-0041 5 Redhat, Ibm, Slackware and 2 more 6 Aix, Unicos, Linux and 3 more 2008-09-09 7.5
Buffer overflow in NLS (Natural Language Service).
CVE-1999-0033 5 Sco, Ncr, Ibm and 2 more 7 Openserver, Aix, Unixware and 4 more 2008-09-09 7.2
Command execution in Sun systems via buffer overflow in the at program.
CVE-1999-0019 7 Ncr, Sgi, Nighthawk and 4 more 10 Openserver, Aix, Unixware and 7 more 2008-09-09 5.0
Delete or create a file via rpc.statd, due to invalid information.
CVE-1999-0017 9 Sco, Siemens, Freebsd and 6 more 11 Reliant Unix, Openserver, Aix and 8 more 2008-09-09 7.5
FTP servers can allow an attacker to connect to arbitrary ports on machines other than the FTP client, aka FTP bounce.
CVE-1999-0014 3 Hp, Ibm, Cde 4 Cde, Vvos, Hp-ux and 1 more 2008-09-09 7.2
Unauthorized privileged access or denial of service via dtappgather program in CDE.
CVE-2007-5757 1 Ibm 1 Db2 Universal Database 2008-09-05 6.9
Untrusted search path vulnerability in db2pd in IBM DB2 Universal Database (UDB) 8 before FixPak 16 and 9 before Fix Pack 4 allows local users to gain root privileges via a modified DB2INSTANCE environment variable that points to a malicious...
CVE-2007-5559 1 Ibm 1 Thinkvantage Tpm 2008-09-05 10.0
Heap-based buffer overflow in the IBM ThinkVantage TPM Service allows remote attackers to execute arbitrary code via a crafted HTTP packet. NOTE: as of 20071016, the only disclosure is a vague pre-advisory with no actionable information. However,...
CVE-2007-4309 1 Ibm 1 Lotus Notes 2008-09-05 3.5
IBM Lotus Notes 5.x through 7.0.2 allows user-assisted remote authenticated administrators to obtain a cleartext notes.id password by setting the notes.ini (1) KFM_ShowEntropy and (2) Debug_Outfile debug variables, a different vulnerability than...
CVE-2007-3676 1 Ibm 1 Db2 2008-09-05 10.0
IBM DB2 Universal Database (UDB) Administration Server (DAS) 8 before Fix Pack 16 and 9 before Fix Pack 4 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via modified pointer values in unspecified...
CVE-2007-1941 1 Ibm 1 Lotus Notes 2008-09-05 4.3
Cross-site scripting (XSS) vulnerability in the Active Content Filter feature in Domino Web Access (DWA) in IBM Lotus Notes before 6.5.6 and 7.x before 7.0.2 FP1 allows remote attackers to inject arbitrary web script or HTML via a...
CVE-2006-7164 1 Ibm 1 Websphere Application Server 2008-09-05 4.3
SimpleFileServlet in IBM WebSphere Application Server 5.0.1 through 5.0.2.7 on Linux and UNIX does not block certain invalid URIs and does not issue a security challenge, which allows remote attackers to read secure files and obtain sensitive...
CVE-2006-6836 1 Ibm 1 Os 400 2008-09-05 10.0
Multiple unspecified vulnerabilities in osp-cert in IBM OS/400 V5R3M0 have unspecified impact and attack vectors, related to ASN.1 parsing.
CVE-2006-6638 1 Ibm 1 Db2 Universal Database 2008-09-05 5.0
IBM DB2 8.1 before FixPak 14 allows remote attackers to cause a denial of service via a crafted SQLJRA packet, which causes a NULL pointer dereference in the sqle_db2ra_as_recvrequest function in DB2ENGN.DLL, a different issue than CVE-2006-4257.
CVE-2006-3778 1 Ibm 1 Lotus Notes 2008-09-05 5.0
IBM Lotus Notes 6.0, 6.5, and 7.0 does not properly handle replies to e-mail messages with alternate name users when the (1) "Save As Draft" option is used or (2) a "," (comma) is inside the "phrase" portion of an address, which can cause the...
CVE-2006-1948 1 Ibm 1 Lotus Notes 2008-09-05 4.0
The "Add Sender to Address Book" operation (AddSenderToAddressBook.lss) and NameHelper.lss in IBM Lotus Notes 6.0 and 6.5 before 20060331 do not properly store information in the Personal Address Book when multiple messages are checked and a...
CVE-2005-4739 1 Ibm 1 Db2 Universal Database 2008-09-05 6.8
IBM DB2 Universal Database (UDB) 820 before version 8 FixPak 10 (s050811) allows remote authenticated users to cause a denial of service (application crash) by using a table function for an instance of snapshot_tbreorg, which triggers a trap in...
CVE-2005-4738 1 Ibm 1 Db2 Universal Database 2008-09-05 6.5
IBM DB2 Universal Database (UDB) 810 before ESE AIX 5765F4100 does not ensure that a user has execute privileges before permitting object creation based on routines, which allows remote authenticated users to gain privileges.
CVE-2005-4737 1 Ibm 1 Db2 Universal Database 2008-09-05 7.5
IBM DB2 Universal Database (UDB) 820 before ESE AIX 5765F4100 allows remote authenticated users to cause a denial of service (CPU consumption) by "abnormally" terminating a connection, which prevents db2agents from being properly cleared.