Vulnerabilities > IBM > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2001-11-22 | CVE-2001-0924 | Directory Traversal vulnerability in IBM Informix Web Datablade Directory traversal vulnerability in ifx CGI program in Informix Web DataBlade allows remote attackers to read arbitrary files via a .. | 5.0 |
| 2001-10-09 | CVE-2001-1096 | Unspecified vulnerability in IBM AIX 4.0 Buffer overflows in muxatmd in AIX 4 allows an attacker to cause a core dump and possibly execute code. | 4.6 |
| 2001-10-09 | CVE-2001-1095 | Unspecified vulnerability in IBM AIX 4.0 Buffer overflow in uuq in AIX 4 could allow local users to execute arbitrary code via a long -r parameter. | 4.6 |
| 2001-09-24 | CVE-2001-0998 | Denial of Service vulnerability in IBM AIX and Hacmp IBM HACMP 4.4 allows remote attackers to cause a denial of service via a completed TCP connection to HACMP ports (e.g., using a port scan) that does not send additional data, which causes a failure in snmpd. | 5.0 |
| 2001-08-02 | CVE-2001-0573 | Unspecified vulnerability in IBM AIX 4 lsfs in AIX 4.x allows a local user to gain additional privileges by creating Trojan horse programs named (1) grep or (2) lslv in a certain directory that is under the user's control, which cause lsfs to access the programs in that directory. | 4.6 |
| 2001-07-23 | CVE-2001-0982 | Directory Traversal vulnerability in IBM Tivoli SecureWay Policy Director Directory traversal vulnerability in IBM Tivoli WebSEAL Policy Director 3.01 through 3.7.1 allows remote attackers to read arbitrary files or directories via encoded .. | 5.0 |
| 2001-07-11 | CVE-2001-1143 | Denial of Service vulnerability in IBM DB2 Universal Database 7.0 IBM DB2 7.0 allows a remote attacker to cause a denial of service (crash) via a single byte to (1) db2ccs.exe on port 6790, or (2) db2jds.exe on port 6789. | 5.0 |
| 2001-07-02 | CVE-2001-1441 | Cross-Site Scripting vulnerability in IBM Visualage for Java 3.5 Cross-site scripting (XSS) vulnerability in VisualAge for Java 3.5 Professional allows remote attackers to execute JavaScript on other clients via the URL, which injects the script in the resulting error message. network ibm | 6.8 |
| 2001-07-02 | CVE-2001-0390 | Denial of Service vulnerability in IBM products IBM Websphere/NetCommerce3 3.1.2 allows remote attackers to cause a denial of service by directly calling the macro.d2w macro with a long string of %0a characters. | 5.0 |
| 2001-07-02 | CVE-2001-0389 | Unspecified vulnerability in IBM Net.Commerce and Websphere Application Server IBM Websphere/NetCommerce3 3.1.2 allows remote attackers to determine the real path of the server by directly calling the macro.d2w macro with a NOEXISTINGHTMLBLOCK argument. | 5.0 |