CVSS: 7.5EPSS: 8%CPEs: 1EXPL: 4CVE-2006-4681 – IBM Director < 5.10 - 'Redirect.bat' Directory Traversal
https://notcve.org/view.php?id=CVE-2006-4681
11 Sep 2006 — Directory traversal vulnerability in Redirect.bat in IBM Director before 5.10 allows remote attackers to read arbitrary files via a .. (dot dot) sequence in the file parameter. Vulnerabilidad de atravesamiento de directorios en Redirect.bat de IBM Director anterior a 5.10 permite a un atacante remoto leer ficheros de sue elección a través de la secuencia ..(punto punto) en el parámetro file. • https://www.exploit-db.com/exploits/2320 •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2006-4682
https://notcve.org/view.php?id=CVE-2006-4682
11 Sep 2006 — Multiple unspecified vulnerabilities in IBM Director before 5.10 allow remote attackers to cause a denial of service (crash) via unspecified vectors involving (1) malformed WMI CIM server requests and (2) malformed packets. Múltiples vulnerabilidades no especificadas en IMB Director anterior a 5.10 permite a un atacante remoto provocar denegación de servicio (caida) a través de vectores no especificados implicando a (1) las respuestas de servidor mal formadas del WMI CIM y (2) paquetes mal formados. • ftp://ftp.software.ibm.com/pc/pccbbs/pc_servers_pdf/dir5.10_docs_relnotes.pdf •
CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 0CVE-2006-4683
https://notcve.org/view.php?id=CVE-2006-4683
11 Sep 2006 — IBM Director before 5.10 allows remote attackers to obtain sensitive information from HTTP headers via HTTP TRACE. IBM Director anterior a 5.10 permite a un atacante remoto obtener información sensible de cabeceras HTTP a través de HTTP TRACE. • ftp://ftp.software.ibm.com/pc/pccbbs/pc_servers_pdf/dir5.10_docs_relnotes.pdf •
CVSS: 8.1EPSS: 0%CPEs: 10EXPL: 0CVE-2004-2558
https://notcve.org/view.php?id=CVE-2004-2558
31 Dec 2004 — Unspecified vulnerability in IBM Tivoli SecureWay Policy Director 3.8, Access Manager for e-business 3.9 to 5.1, Access Manager Identity Manager Solution 5.1, Configuration Manager 4.2, Configuration Manager for Automated Teller Machines 2.1.0, and IBM WebSphere Everyplace Server, Service Provider Offering for Multi-platforms 2.1.3 to 2.15 allow remote attackers to hijack sessions of authenticated users via unknown attack vectors involving certain cookies, aka "Potential Credential Impersonation Attack." • http://secunia.com/advisories/11761 •
CVSS: 10.0EPSS: 6%CPEs: 34EXPL: 0CVE-2004-1760
https://notcve.org/view.php?id=CVE-2004-1760
21 Jan 2004 — The default installation of Cisco voice products, when running the IBM Director Agent on IBM servers before OS 2000.2.6, does not require authentication, which allows remote attackers to gain administrator privileges by connecting to TCP port 14247. • http://secunia.com/advisories/10696 • CWE-287: Improper Authentication •
CVSS: 7.5EPSS: 2%CPEs: 34EXPL: 1CVE-2004-1759
https://notcve.org/view.php?id=CVE-2004-1759
21 Jan 2004 — Cisco voice products, when running the IBM Director Agent on IBM servers before OS 2000.2.6, allows remote attackers to cause a denial of service (CPU consumption) via arbitrary packets to TCP port 14247, as demonstrated using port scanning. • http://secunia.com/advisories/10696 • CWE-399: Resource Management Errors •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2001-1191
https://notcve.org/view.php?id=CVE-2001-1191
11 Dec 2001 — WebSeal in IBM Tivoli SecureWay Policy Director 3.8 allows remote attackers to cause a denial of service (crash) via a URL that ends in %2e. WebSeal en IBM Tivoli SecureWay Policy Director 3.8 permite a atacantes remotos causar la denegación de servicios (caida) mediante una URL que finalice con .. • http://www.securityfocus.com/archive/1/245283 •
CVSS: 7.5EPSS: 2%CPEs: 4EXPL: 0CVE-2001-0982
https://notcve.org/view.php?id=CVE-2001-0982
23 Jul 2001 — Directory traversal vulnerability in IBM Tivoli WebSEAL Policy Director 3.01 through 3.7.1 allows remote attackers to read arbitrary files or directories via encoded .. (dot dot) sequences containing "%2e" strings. • ftp://ftp.tivoli.com/support/patches/patches_3.7.1/3.7.1-POL-0003/3.7.1-POL-0003.README •