Vulnerabilities > IBM
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2008-04-09 | CVE-2008-1707 | Resource Management Errors vulnerability in IBM Soliddb IBM solidDB 06.00.1018 and earlier allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a packet with an 0x11 value in a certain "type" field. | 4.3 |
| 2008-04-09 | CVE-2008-1706 | Numeric Errors vulnerability in IBM Soliddb 06.00.1018 Uncontrolled array index in IBM solidDB 06.00.1018 and earlier allows remote attackers to cause a denial of service (daemon crash) via a large value in a certain 32-bit field. | 4.3 |
| 2008-04-09 | CVE-2008-1705 | USE of Externally-Controlled Format String vulnerability in IBM Soliddb 06.00.1018 Format string vulnerability in the logging function in IBM solidDB 06.00.1018 and earlier allows remote attackers to execute arbitrary code via format string specifiers in the (1) user name, (2) peer name, and possibly unspecified other fields. | 6.8 |
| 2008-04-04 | CVE-2008-1681 | Permissions, Privileges, and Access Controls vulnerability in IBM DB2 Content Manager Unspecified vulnerability in IBM DB2 Content Manager before 8.3 FP8 has unknown impact and attack vectors related to the AllowedTrustedLogin privilege. | 10.0 |
| 2008-03-31 | CVE-2008-1601 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in IBM AIX 5.2/5.3 Stack-based buffer overflow in the reboot program on IBM AIX 5.2 and 5.3 allows local users in the shutdown group to gain privileges. | 7.2 |
| 2008-03-31 | CVE-2008-1600 | Permissions, Privileges, and Access Controls vulnerability in IBM AIX 5.2/5.3/6.1 The lsmcode program on IBM AIX 5.2, 5.3, and 6.1 does not properly handle environment variables, which allows local users to gain privileges, a different vulnerability than CVE-2004-1329. | 7.2 |
| 2008-03-31 | CVE-2008-1599 | Permissions, Privileges, and Access Controls vulnerability in IBM AIX 5.2/5.3/6.1 The nddstat programs on IBM AIX 5.2, 5.3, and 6.1 do not properly handle environment variables, which allows local users to gain privileges by invoking (1) atmstat, (2) entstat, (3) fddistat, (4) hdlcstat, or (5) tokstat. | 7.2 |
| 2008-03-31 | CVE-2008-1598 | Information Exposure vulnerability in IBM AIX 6.1 The kernel in IBM AIX 6.1 allows local users with ProbeVue privileges to read arbitrary kernel memory and obtain sensitive information via unspecified vectors. | 4.7 |
| 2008-03-31 | CVE-2008-1597 | Denial-Of-Service vulnerability in IBM AIX 6.1 The WPAR system call implementation in the kernel in IBM AIX 6.1 allows local users to cause a denial of service via unknown calls that trigger "undefined behavior." | 4.9 |
| 2008-03-31 | CVE-2008-1596 | Permissions, Privileges, and Access Controls vulnerability in IBM AIX 5.2/5.3/6.1 Trusted Execution in IBM AIX 6.1 uses an incorrect pathname argument in a call to the trustchk_block_write function, which might allow local users to modify trusted files, related to missing checks in the TSD_FILES_LOCK policy for modifications performed via hard links, a different vulnerability than CVE-2007-6680. | 7.2 |