Vulnerabilities > IBM
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2010-01-09 | CVE-2010-0275 | Security vulnerability in IBM Lotus Domino Web Access Ultra-light Mode in IBM Lotus iNotes (aka Domino Web Access or DWA) before 229.241 for Domino 8.0.2 FP3 does not properly handle script commands in the status-alerts URL, which has unspecified impact and attack vectors, aka SPR LSHR7TBM58. | 10.0 |
2010-01-09 | CVE-2010-0274 | Security vulnerability in IBM Lotus Domino Web Access Unspecified vulnerability in the Edit Contact scene in Ultra-light Mode in IBM Lotus iNotes (aka Domino Web Access or DWA) before 229.241 for Domino 8.0.2 FP3 has unknown impact and attack vectors, aka SPR LSHR7TBLY5. | 10.0 |
2010-01-09 | CVE-2009-4594 | Remote Security vulnerability in Lotus iNotes Unspecified vulnerability in IBM Lotus iNotes (aka Domino Web Access or DWA) before 229.131 for Domino 8.0.x has unknown impact and attack vectors, aka SPR SDOY7RHBNH. | 10.0 |
2009-12-28 | CVE-2009-4439 | Denial-Of-Service vulnerability in IBM DB2 9.5 Unspecified vulnerability in the Query Compiler, Rewrite, and Optimizer component in IBM DB2 9.5 before FP5 allows remote authenticated users to cause a denial of service (instance crash) by compiling a SQL query. | 4.0 |
2009-12-28 | CVE-2009-4438 | Permissions, Privileges, and Access Controls vulnerability in IBM DB2 9.1/9.5/9.7 The Query Compiler, Rewrite, and Optimizer component in IBM DB2 9.1 before FP8, 9.5 before FP5, and 9.7 before FP1 does not enforce privilege requirements for access to a (1) sequence or (2) global-variable object, which allows remote authenticated users to make use of data via unspecified vectors. | 6.5 |
2009-12-21 | CVE-2009-4362 | Buffer Errors vulnerability in IBM AIX 6.1 Multiple buffer overflows in qosmod in IBM AIX 6.1 allow local users to cause a denial of service (application crash) or possibly gain privileges via long string arguments. | 7.2 |
2009-12-21 | CVE-2009-4361 | Buffer Errors vulnerability in IBM AIX 6.1 Multiple buffer overflows in qoslist in IBM AIX 6.1 allow local users to cause a denial of service (application crash) or possibly gain privileges via a long string argument. | 7.2 |
2009-12-18 | CVE-2009-4357 | Information Exposure vulnerability in IBM Rational Clearcase and Rational Clearquest CQWeb (aka the web interface) in IBM Rational ClearQuest before 7.1.1 does not properly handle use of legacy URLs for automatic login, which might allow attackers to discover the passwords for user accounts via unspecified vectors. | 5.0 |
2009-12-16 | CVE-2009-4335 | Remote Security vulnerability in IBM DB2 9.5 Multiple unspecified vulnerabilities in bundled stored procedures in the Spatial Extender component in IBM DB2 9.5 before FP5 have unknown impact and remote attack vectors, related to "remote exploits." | 10.0 |
2009-12-16 | CVE-2009-4334 | Permissions, Privileges, and Access Controls vulnerability in IBM DB2 9.1/9.5/9.7 The Self Tuning Memory Manager (STMM) component in IBM DB2 9.1 before FP8, 9.5 before FP5, and 9.7 before FP1 uses 0666 permissions for the STMM log file, which allows local users to cause a denial of service or have unspecified other impact by writing to this file. | 4.6 |