Vulnerabilities > IBM > OS 400
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2009-06-11 | CVE-2009-2030 | Security vulnerability in IBM OS/400 JVA-RUN JDK6.0 XML Digital Signature Unspecified vulnerability in the XML Digital Signature verification functionality in JVA-RUN in JDK 6.0 in IBM OS/400 i5/OS V5R4M0 and V6R1M0 has unknown impact and attack vectors related to "XML SECURITY PATCH." | 10.0 |
| 2008-06-16 | CVE-2008-2709 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in IBM OS 400 V5R4M0/V5R4M5/V6R1M0 Buffer overflow in the BrSmRcvAndCheck function in the RCHMGR module on IBM OS/400 V5R4M0, V5R4M5, and V6R1M0 allows local users to cause a denial of service (task halt and main storage dump) via unspecified vectors involving the running of diagnostics on a modem port. | 4.7 |
| 2008-02-12 | CVE-2008-0694 | Cross-Site Scripting vulnerability in IBM OS 400 V5R3M0/V5R4M0 Cross-site scripting (XSS) vulnerability in the HTTP Server in IBM OS/400 V5R3M0 and V5R4M0 allows remote attackers to inject arbitrary web script or HTML via the Expect HTTP header. | 4.3 |
| 2007-07-03 | CVE-2007-3537 | Unspecified vulnerability in IBM OS 400 IBM OS/400 (aka i5/OS) V4R2M0 through V5R3M0 on iSeries machines sends responses to TCP SYN-FIN packets, which allows remote attackers to obtain system information and possibly bypass firewall rules. | 7.8 |
| 2007-01-23 | CVE-2007-0442 | Remote Security vulnerability in IBM OS/400 Unspecified vulnerability in IBM OS/400 R530 and R535 has unknown impact and remote attack vectors, related to an "Integrity Problem" involving LIC-TCPIP and TCP reset. | 5.0 |
| 2006-12-31 | CVE-2006-6836 | Multiple Unspecified vulnerability in IBM OS 400 V5R3M0 Multiple unspecified vulnerabilities in osp-cert in IBM OS/400 V5R3M0 have unspecified impact and attack vectors, related to ASN.1 parsing. | 10.0 |
| 2005-05-02 | CVE-2005-1182 | Denial-Of-Service vulnerability in IBM OS 400 R510/R520/R530 Unknown vulnerability in Incoming Remote Command (iSeries Access for Windows Remote Command service) in IBM OS/400 R510, R520, and R530 allows attackers to cause a denial of service (IRC shutdown) via certain inputs. | 5.0 |
| 2005-05-02 | CVE-2005-0899 | Unspecified vulnerability in IBM OS 400 5.2 AS/400 running OS400 5.2 installs and enables LDAP by default, which allows remote authenticated users to obtain OS/400 user profiles by performing a search. | 2.1 |
| 2002-12-31 | CVE-2002-1731 | Unspecified vulnerability in IBM OS 400 The System Request menu in IBM AS/400 allows local users to list valid user accounts by viewing the object names that are type USRPRF. | 2.1 |