Vulnerabilities > IBM > Critical
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2000-11-14 | CVE-2000-0848 | Unspecified vulnerability in IBM Websphere Application Server 3.0.2 Buffer overflow in IBM WebSphere web application server (WAS) allows remote attackers to execute arbitrary commands via a long Host: request header. | 10.0 |
2000-11-14 | CVE-2000-0844 | Permissions, Privileges, and Access Controls vulnerability in multiple products Some functions that implement the locale subsystem on Unix do not properly cleanse user-injected format strings, which allows local attackers to execute arbitrary commands via functions such as gettext and catopen. | 10.0 |
2000-10-20 | CVE-2000-0677 | Unspecified vulnerability in IBM Net.Data Buffer overflow in IBM Net.Data db2www CGI program allows remote attackers to execute arbitrary commands via a long PATH_INFO environmental variable. | 10.0 |
1999-11-10 | CVE-1999-0835 | Denial of service in BIND named via malformed SIG records. | 10.0 |
1999-09-28 | CVE-1999-0789 | Unspecified vulnerability in IBM AIX 4.3/4.3.1/4.3.2 Buffer overflow in AIX ftpd in the libc library. | 10.0 |
1999-08-18 | CVE-1999-0745 | Unspecified vulnerability in IBM AIX Buffer overflow in Source Code Browser Program Database Name Server Daemon (pdnsd) for the IBM AIX C Set ++ compiler. | 10.0 |
1999-02-17 | CVE-1999-1405 | Unspecified vulnerability in IBM AIX snap command in AIX before 4.3.2 creates the /tmp/ibmsupt directory with world-readable permissions and does not remove or clear the directory when snap -a is executed, which could allow local users to access the shadowed password file by creating /tmp/ibmsupt/general/passwd before root runs snap -a. | 10.0 |
1998-04-08 | CVE-1999-0011 | Denial of Service vulnerabilities in BIND 4.9 and BIND 8 Releases via CNAME record and zone transfer. | 10.0 |
1998-04-08 | CVE-1999-0009 | Inverse query buffer overflow in BIND 4.9 and BIND 8 Releases. | 10.0 |
1998-04-01 | CVE-1999-0003 | Execute commands as root via buffer overflow in Tooltalk database server (rpc.ttdbserverd). | 10.0 |