CVSS: 10.0EPSS: 6%CPEs: 1EXPL: 3CVE-2000-0848 – IBM Websphere Application Server 3.0.2 Server Plugin - Denial of Service
https://notcve.org/view.php?id=CVE-2000-0848
14 Nov 2000 — Buffer overflow in IBM WebSphere web application server (WAS) allows remote attackers to execute arbitrary commands via a long Host: request header. • https://www.exploit-db.com/exploits/20229 •
CVSS: 7.5EPSS: 4%CPEs: 3EXPL: 3CVE-2000-0652 – IBM Websphere Application Server 2.0./3.0/3.0.2.1 - Showcode
https://notcve.org/view.php?id=CVE-2000-0652
24 Jul 2000 — IBM WebSphere allows remote attackers to read source code for executable web files by directly calling the default InvokerServlet using a URL which contains the "/servlet/file" string. • https://www.exploit-db.com/exploits/20097 •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2000-0497
https://notcve.org/view.php?id=CVE-2000-0497
08 Jun 2000 — IBM WebSphere server 3.0.2 allows a remote attacker to view source code of a JSP program by requesting a URL which provides the JSP extension in upper case. • http://archives.neohapsis.com/archives/ntbugtraq/2000-q2/0263.html • CWE-178: Improper Handling of Case Sensitivity •
CVSS: 7.2EPSS: 0%CPEs: 1EXPL: 0CVE-1999-0852
https://notcve.org/view.php?id=CVE-1999-0852
02 Dec 1999 — IBM WebSphere sets permissions that allow a local user to modify a deinstallation script or its data files stored in /usr/bin. • http://www.securityfocus.com/bid/844 •