Vulnerabilities > IBM > Rational Doors WEB Access > 1.4.0.2

DATE CVE VULNERABILITY TITLE RISK
2011-07-07 CVE-2011-2682 Resource Management Errors vulnerability in IBM Rational Doors web Access
The Login component in IBM Rational DOORS Web Access 1.4.x before 1.4.0.4 allows remote authenticated users to cause a denial of service (license consumption) by trying to login to DOORS Web Access with a new user account that has never been used for a DOORS login.
network
low complexity
ibm CWE-399
4.0
4.0
2011-07-07 CVE-2011-2681 Improper Input Validation vulnerability in IBM Rational Doors web Access
IBM Rational DOORS Web Access 1.4.x before 1.4.0.4 does not properly handle exceptions, which has unspecified impact and remote attack vectors.
network
low complexity
ibm CWE-20
critical
 10.0
10
2011-07-07 CVE-2011-2680 Multiple Unspecified vulnerability in IBM Rational DOORS
Unspecified vulnerability in IBM Rational DOORS Web Access 1.4.x before 1.4.0.4 has unknown impact and remote attack vectors related to the "server error response."
network
low complexity
ibm
critical
 10.0
10
2011-07-07 CVE-2011-2679 Cross-Site Scripting vulnerability in IBM Rational Doors web Access
Cross-site scripting (XSS) vulnerability in IBM Rational DOORS Web Access 1.4.x before 1.4.0.4 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
network
ibm CWE-79
4.3
4.3