Vulnerabilities > IBM
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 1999-05-06 | CVE-1999-1079 | Unspecified vulnerability in IBM AIX Vulnerability in ptrace in AIX 4.3 allows local users to gain privileges by attaching to a setgid program. | 4.6 |
| 1999-03-01 | CVE-1999-0429 | Unspecified vulnerability in IBM Lotus Notes 4.5 The Lotus Notes 4.5 client may send a copy of encrypted mail in the clear across the network if the user does not set the "Encrypt Saved Mail" preference. | 7.5 |
| 1999-02-17 | CVE-1999-1405 | Unspecified vulnerability in IBM AIX snap command in AIX before 4.3.2 creates the /tmp/ibmsupt directory with world-readable permissions and does not remove or clear the directory when snap -a is executed, which could allow local users to access the shadowed password file by creating /tmp/ibmsupt/general/passwd before root runs snap -a. | 10.0 |
| 1999-01-29 | CVE-1999-1546 | Unspecified vulnerability in IBM Navio NC Browser 1.1.0.1 netstation.navio-com.rte 1.1.0.1 configuration script for Navio NC on IBM AIX exports /tmp over NFS as world-readable and world-writable. | 5.0 |
| 1998-11-16 | CVE-1999-0057 | Vacation program allows command execution by remote users through a sendmail command. | 7.5 |
| 1998-11-01 | CVE-1999-0118 | Unspecified vulnerability in IBM AIX AIX infod allows local users to gain root access through an X display. | 7.2 |
| 1998-10-02 | CVE-1999-1404 | Multiple vulnerability in IBM Tivoli OPC Tracker Agent 1.0X/2.0X/3.0X IBM/Tivoli OPC Tracker Agent version 2 release 1 allows remote attackers to cause a denial of service (resource exhaustion) via malformed data to the localtracker client port (5011), which prevents the connection from being closed properly. | 5.0 |
| 1998-10-02 | CVE-1999-1403 | Multiple vulnerability in IBM Tivoli OPC Tracker Agent 1.0X/2.0X/3.0X IBM/Tivoli OPC Tracker Agent version 2 release 1 creates files, directories, and IPC message queues with insecure permissions (world-readable and world-writable), which could allow local users to disrupt operations and possibly gain privileges by modifying or deleting files. | 7.2 |
| 1998-07-06 | CVE-1999-1574 | Unspecified vulnerability in IBM AIX 4.3.0 Buffer overflow in the lex routines of nslookup for AIX 4.3 may allow attackers to cause a core dump and possibly execute arbitrary code via "long input strings." | 7.5 |
| 1998-06-11 | CVE-1999-1480 | Unspecified vulnerability in IBM AIX 4.3 (1) acledit and (2) aclput in AIX 4.3 allow local users to create or modify files via a symlink attack. | 1.2 |