Vulnerabilities > IBM
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2006-11-03 | CVE-2006-5663 | Local Security vulnerability in IBM products IBM Informix Dynamic Server 10.00, Informix Client Software Development Kit (CSDK) 2.90, and Informix I-Connect 2.90 use insecure permissions for installation scripts, which allows local users to gain privileges by modifying the scripts. | 4.6 |
| 2006-10-17 | CVE-2006-5324 | Remote Security vulnerability in Websphere Application Server The Web Services Notification (WSN) security component of IBM WebSphere Application Server before 6.1.0.2 allows attackers to obtain unspecified access without supplying a username and password, aka PK28374. | 7.5 |
| 2006-10-17 | CVE-2006-5323 | Remote Security vulnerability in Websphere Application Server Unspecified vulnerability in IBM WebSphere Application Server before 6.1.0.2 has unspecified impact and attack vectors, related to a "possible security exposure," aka PK29360. | 10.0 |
| 2006-10-05 | CVE-2006-5163 | Unspecified vulnerability in IBM Informix Dynamic Server 10.Ucrc1 IBM Informix Dynamic Server 10.UC3RC1 Trial for Linux and possibly other versions creates /tmp/installserver.txt with insecure permissions, which allows local users to append data to arbitrary files via a symlink attack. | 3.6 |
| 2006-10-05 | CVE-2006-5161 | Unspecified vulnerability in IBM Client Security Password Manager IBM Client Security Password Manager stores and distributes saved passwords based upon the title of a website, which allows remote attackers to obtain username and password credentials by changing the title of an HTML page. | 6.4 |
| 2006-09-27 | CVE-2006-5011 | Local Arbitrary Command Execution vulnerability in IBM AIX 5.2.0/5.3.0 Untrusted search path vulnerability in snappd in IBM AIX 5.2.0 and 5.3.0 allows local users to execute arbitrary commands via a Trojan horse program, involving the "system subroutine". | 7.2 |
| 2006-09-27 | CVE-2006-5010 | Unspecified vulnerability in IBM AIX 5.3.0 Untrusted search path vulnerability in acctctl in IBM AIX 5.3.0 allows local users to execute arbitrary commands by modifying the path to point to a malicious mkdir program. | 7.2 |
| 2006-09-27 | CVE-2006-5009 | Local Buffer Overflow vulnerability in IBM AIX 5.2.0/5.3.0 Unspecified vulnerability in xlock in IBM AIX 5.2.0 and 5.3.0 allows local users to execute arbitrary commands and overwrite arbitrary files via unspecified vectors, possibly involving a buffer overflow. | 7.2 |
| 2006-09-27 | CVE-2006-5008 | Local Privilege Escalation and Denial of Service vulnerability in IBM AIX 5.2.0/5.3.0 Unspecified vulnerability in utape in IBM AIX 5.2.0 and 5.3.0 allows attackers to execute arbitrary commands and overwrite arbitrary files via unspecified vectors. | 10.0 |
| 2006-09-27 | CVE-2006-5007 | Local Privilege Escalation vulnerability in IBM AIX 5.2.0/5.3.0 Untrusted search path vulnerability in uucp in IBM AIX 5.2.0 and 5.3.0 allows local users to local users to gain privileges via a Trojan horse program involving uux. | 4.6 |