CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2007-3263
https://notcve.org/view.php?id=CVE-2007-3263
Unspecified vulnerability in the Default Messaging Component in IBM WebSphere Application Server (WAS) 6.1.0.7 and earlier has unknown impact and attack vectors, related to "incorrect authorization on a remote interface to the SDO repository." Vulnerabilidad no especificada en en el componente Default Messaging Component de IBM WebSphere Application Server(WAS) 6.1.0.7 y anteriores tiene impacto y vectores de ataque desconocidos, relacionados con la "autorización incorrecta en una interfaz remota con el repositorio SDO". • http://osvdb.org/41613 http://secunia.com/advisories/25704 http://www-1.ibm.com/support/docview.wss?uid=swg27007951 http://www.securityfocus.com/bid/24505 http://www.vupen.com/english/advisories/2007/2234 https://exchange.xforce.ibmcloud.com/vulnerabilities/34901 •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2007-3264
https://notcve.org/view.php?id=CVE-2007-3264
Unspecified vulnerability in the PD tools component in IBM WebSphere Application Server (WAS) 6.1.0.7 and earlier has unknown impact and attack vectors. Vulnerabilidad no especificada en en el componente PD tools de IBM WebSphere Application Server (WAS) 6.1.0.7 y anteriores tiene impacto y vectores de ataque desconocidos. • http://osvdb.org/41611 http://secunia.com/advisories/25704 http://www-1.ibm.com/support/docview.wss?uid=swg27007951 http://www.securityfocus.com/bid/24505 http://www.vupen.com/english/advisories/2007/2234 https://exchange.xforce.ibmcloud.com/vulnerabilities/34904 •
CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 0CVE-2007-3265
https://notcve.org/view.php?id=CVE-2007-3265
Cross-site scripting (XSS) vulnerability in the Samples component in IBM WebSphere Application Server (WAS) 6.1.0.7 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Vulnerabilidad de secuencias de comandos en sitios cruzados (XSS) en el componente Samples (Muestras) de IBM WebSphere Application Server (WAS) 6.1.0.7 y anteriores permite a atacantes remotos inyectar secuencias de comandos web o HTML de su elección a través de vectores no especificados. • http://osvdb.org/38468 http://osvdb.org/41612 http://www-1.ibm.com/support/docview.wss?uid=swg27007951 http://www.securityfocus.com/bid/24505 http://www.vupen.com/english/advisories/2007/2234 https://exchange.xforce.ibmcloud.com/vulnerabilities/34905 •
CVSS: 7.5EPSS: 0%CPEs: 9EXPL: 0CVE-2007-1945
https://notcve.org/view.php?id=CVE-2007-1945
Unspecified vulnerability in the Servlet Engine/Web Container in IBM WebSphere Application Server (WAS) before 6.1.0.7 has unknown impact and attack vectors. Vulnerabilidad no especificada en Servlet Engine/Web Container en IBM WebSphere Application Server (WAS) anterior a 6.1.0.7 tiene un impacto desconocido y vectores de ataque. • http://osvdb.org/41605 http://secunia.com/advisories/24852 http://www-1.ibm.com/support/docview.wss?rs=180&uid=swg27007951#6107 http://www-1.ibm.com/support/search.wss?rs=0&q=PK36447&apar=only http://www.vupen.com/english/advisories/2007/1282 https://exchange.xforce.ibmcloud.com/vulnerabilities/33471 •
CVSS: 5.0EPSS: 0%CPEs: 1EXPL: 0CVE-2007-1944
https://notcve.org/view.php?id=CVE-2007-1944
The Java Message Service (JMS) in IBM WebSphere Application Server (WAS) before 6.1.0.7 allows attackers to cause a denial of service via unknown vectors involving the "double release [of] a bytebuffer input stream," possibly a double free vulnerability. Java Message Service (JMS) en IBM WebSphere Application Server (WAS) versiones anteriores a 6.1.0.7, permite a atacantes causar una denegación de servicio por medio de vectores desconocidos que implican la "double release [of] a bytebuffer input stream”, posiblemente una vulnerabilidad de doble liberación. • http://secunia.com/advisories/24852 http://www-1.ibm.com/support/docview.wss?rs=180&uid=swg27007951#6107 http://www.vupen.com/english/advisories/2007/1282 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •