Vulnerabilities > IBM
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2008-07-21 | CVE-2008-3235 | Credentials Management vulnerability in IBM Websphere Application Server Unspecified vulnerability in the PropFilePasswordEncoder utility in the Security component in IBM WebSphere Application Server (WAS) 5.1 before 5.1.1.19 has unknown impact and attack vectors. | 10.0 |
| 2008-07-14 | CVE-2008-3161 | Cross-Site Scripting vulnerability in IBM Maximo 4.1/5.2 Multiple cross-site scripting (XSS) vulnerabilities in jsp/common/system/debug.jsp in IBM Maximo 4.1 and 5.2 allow remote attackers to inject arbitrary web script or HTML via the (1) Accept, (2) Accept-Language, (3) UA-CPU, (4) Accept-Encoding, (5) User-Agent, or (6) Cookie HTTP header. | 4.3 |
| 2008-07-14 | CVE-2008-3160 | Multiple Unspecified vulnerability in IBM Data ONTAP Multiple unspecified vulnerabilities in IBM Data ONTAP 7.1 before 7.1.3, as used by IBM System Storage N series Filer and IBM System Storage N series Gateway, have unknown impact and attack vectors. | 10.0 |
| 2008-06-30 | CVE-2008-2943 | Resource Management Errors vulnerability in IBM Tivoli Directory Server Double free vulnerability in IBM Tivoli Directory Server (TDS) 6.1.0.0 through 6.1.0.15 allows remote authenticated administrators to cause a denial of service (ABEND) and possibly execute arbitrary code by using ldapadd to attempt to create a duplicate ibm-globalAdminGroup LDAP database entry. | 6.0 |
| 2008-06-26 | CVE-2008-2880 | Buffer Errors vulnerability in IBM AFP Viewer Plug-In 2.0.7.1/3.2.1.1 Heap-based buffer overflow in the IBM AFP Viewer Plug-in 2.0.7.1 and 3.2.1.1 allows remote attackers to execute arbitrary code via a long SRC property value. | 9.3 |
| 2008-06-16 | CVE-2008-2709 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in IBM OS 400 V5R4M0/V5R4M5/V6R1M0 Buffer overflow in the BrSmRcvAndCheck function in the RCHMGR module on IBM OS/400 V5R4M0, V5R4M5, and V6R1M0 allows local users to cause a denial of service (task halt and main storage dump) via unspecified vectors involving the running of diagnostics on a modem port. | 4.7 |
| 2008-06-04 | CVE-2008-2550 | Remote Security vulnerability in Websphere Application Server Unspecified vulnerability in the Web Services Security component in IBM WebSphere Application Server (WAS) 6.1 before 6.1.0.17 has unknown impact and attack vectors related to an attribute in the SOAP security header. | 5.0 |
| 2008-06-02 | CVE-2008-2515 | Permissions, Privileges, and Access Controls vulnerability in IBM AIX 5.2/5.3/6.1 Unspecified vulnerability in iostat in IBM AIX 5.2, 5.3, and 6.1 allows local users to gain privileges via unknown vectors related to an "environment variable handling error." | 7.2 |
| 2008-06-02 | CVE-2008-2514 | Buffer Errors vulnerability in IBM AIX 5.2/5.3/6.1 Buffer overflow in errpt in IBM AIX 5.2, 5.3, and 6.1 allows local users to gain privileges via unknown attack vectors. | 4.6 |
| 2008-06-02 | CVE-2008-2513 | Buffer Errors vulnerability in IBM AIX 5.2/5.3/6.1 Buffer overflow in the kernel in IBM AIX 5.2, 5.3, and 6.1 allows local users to execute arbitrary code in kernel mode via unknown attack vectors. | 7.2 |