Vulnerabilities > IBM > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2000-10-20 | CVE-2000-0761 | Unspecified vulnerability in IBM OS2 FTP Server 4.0/4.2/4.3 OS2/Warp 4.5 FTP server allows remote attackers to cause a denial of service via a long username. | 5.0 |
| 2000-07-24 | CVE-2000-0652 | Unspecified vulnerability in IBM Websphere Application Server 2.0/3.0/3.0.21 IBM WebSphere allows remote attackers to read source code for executable web files by directly calling the default InvokerServlet using a URL which contains the "/servlet/file" string. | 5.0 |
| 2000-05-24 | CVE-2000-0441 | Unspecified vulnerability in IBM AIX Vulnerability in AIX 3.2.x and 4.x allows local users to gain write access to files on locally or remotely mounted AIX filesystems. | 5.0 |
| 1999-12-31 | CVE-1999-1488 | Unspecified vulnerability in IBM System Data Repository Sp2.0 sdrd daemon in IBM SP2 System Data Repository (SDR) allows remote attackers to read files without authentication. | 5.0 |
| 1999-12-27 | CVE-2000-0027 | Unspecified vulnerability in IBM Network Station Manager 2.0R1 IBM Network Station Manager NetStation allows local users to gain privileges via a symlink attack. | 6.2 |
| 1999-05-06 | CVE-1999-1079 | Unspecified vulnerability in IBM AIX Vulnerability in ptrace in AIX 4.3 allows local users to gain privileges by attaching to a setgid program. | 4.6 |
| 1999-01-29 | CVE-1999-1546 | Unspecified vulnerability in IBM Navio NC Browser 1.1.0.1 netstation.navio-com.rte 1.1.0.1 configuration script for Navio NC on IBM AIX exports /tmp over NFS as world-readable and world-writable. | 5.0 |
| 1998-10-02 | CVE-1999-1404 | Multiple vulnerability in IBM Tivoli OPC Tracker Agent 1.0X/2.0X/3.0X IBM/Tivoli OPC Tracker Agent version 2 release 1 allows remote attackers to cause a denial of service (resource exhaustion) via malformed data to the localtracker client port (5011), which prevents the connection from being closed properly. | 5.0 |
| 1998-04-08 | CVE-1999-0010 | Denial of Service vulnerability in BIND 8 Releases via maliciously formatted DNS messages. | 5.0 |
| 1998-03-18 | CVE-1999-1075 | Unspecified vulnerability in IBM AIX 4.1.5 inetd in AIX 4.1.5 dynamically assigns a port N when starting ttdbserver (ToolTalk server), but also inadvertently listens on port N-1 without passing control to ttdbserver, which allows remote attackers to cause a denial of service via a large number of connections to port N-1, which are not properly closed by inetd. | 5.0 |