CVSS: 5.0EPSS: 0%CPEs: 20EXPL: 0CVE-2007-3397
https://notcve.org/view.php?id=CVE-2007-3397
The web container in IBM WebSphere Application Server (WAS) before 6.0.2.21, and 6.1.x before 6.1.0.9, sends response data intended for a different request in certain circumstances after a closed connection error, which might allow remote attackers to obtain sensitive information. El contenedor web en IBM WebSphere Application Server (WAS) anterior a 6.0.2.21, y 6.1.x anterior a 6.1.0.9, envía los datos de respuesta previstos para una petición diferente en ciertas circunstancias después de un error de cierre de conexión, que puede permitir que atacantes remotos obtengan información sensible. • http://osvdb.org/41644 http://secunia.com/advisories/25817 http://www-1.ibm.com/support/docview.wss?rs=180&uid=swg24015854 http://www-1.ibm.com/support/docview.wss?uid=swg21261071 http://www.securityfocus.com/bid/24608 http://www.securitytracker.com/id?1018288 •
CVSS: 7.8EPSS: 3%CPEs: 1EXPL: 0CVE-2007-3262
https://notcve.org/view.php?id=CVE-2007-3262
Unspecified vulnerability in the Default Messaging Component in IBM WebSphere Application Server (WAS) 6.1.0.7 and earlier allows remote attackers to cause a denial of service related to a thread hang, and possibly related to a "TCP issue," or to MPAlarmThread and a resultant memory leak. Vulnerabilidad no especificada en en el componente Default Messaging Component de IBM WebSphere Application Server(WAS) 6.1.0.7 y anteriores permite a atacantes remotos provocar una denegación de servicio relacionado con un cuelgue de un hilo, y posiblemente relacionado con un "problema TCP", o con MPAlarmThread y una fuga de memoria resultante. • http://osvdb.org/41614 http://secunia.com/advisories/25704 http://www-1.ibm.com/support/docview.wss?uid=swg27007951 http://www.securityfocus.com/bid/24505 http://www.vupen.com/english/advisories/2007/2234 https://exchange.xforce.ibmcloud.com/vulnerabilities/34903 •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2007-3263
https://notcve.org/view.php?id=CVE-2007-3263
Unspecified vulnerability in the Default Messaging Component in IBM WebSphere Application Server (WAS) 6.1.0.7 and earlier has unknown impact and attack vectors, related to "incorrect authorization on a remote interface to the SDO repository." Vulnerabilidad no especificada en en el componente Default Messaging Component de IBM WebSphere Application Server(WAS) 6.1.0.7 y anteriores tiene impacto y vectores de ataque desconocidos, relacionados con la "autorización incorrecta en una interfaz remota con el repositorio SDO". • http://osvdb.org/41613 http://secunia.com/advisories/25704 http://www-1.ibm.com/support/docview.wss?uid=swg27007951 http://www.securityfocus.com/bid/24505 http://www.vupen.com/english/advisories/2007/2234 https://exchange.xforce.ibmcloud.com/vulnerabilities/34901 •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2007-3264
https://notcve.org/view.php?id=CVE-2007-3264
Unspecified vulnerability in the PD tools component in IBM WebSphere Application Server (WAS) 6.1.0.7 and earlier has unknown impact and attack vectors. Vulnerabilidad no especificada en en el componente PD tools de IBM WebSphere Application Server (WAS) 6.1.0.7 y anteriores tiene impacto y vectores de ataque desconocidos. • http://osvdb.org/41611 http://secunia.com/advisories/25704 http://www-1.ibm.com/support/docview.wss?uid=swg27007951 http://www.securityfocus.com/bid/24505 http://www.vupen.com/english/advisories/2007/2234 https://exchange.xforce.ibmcloud.com/vulnerabilities/34904 •
CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 0CVE-2007-3265
https://notcve.org/view.php?id=CVE-2007-3265
Cross-site scripting (XSS) vulnerability in the Samples component in IBM WebSphere Application Server (WAS) 6.1.0.7 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Vulnerabilidad de secuencias de comandos en sitios cruzados (XSS) en el componente Samples (Muestras) de IBM WebSphere Application Server (WAS) 6.1.0.7 y anteriores permite a atacantes remotos inyectar secuencias de comandos web o HTML de su elección a través de vectores no especificados. • http://osvdb.org/38468 http://osvdb.org/41612 http://www-1.ibm.com/support/docview.wss?uid=swg27007951 http://www.securityfocus.com/bid/24505 http://www.vupen.com/english/advisories/2007/2234 https://exchange.xforce.ibmcloud.com/vulnerabilities/34905 •