CVSS: 4.0EPSS: 0%CPEs: 2EXPL: 0CVE-2015-7416
https://notcve.org/view.php?id=CVE-2015-7416
AFP Workbench Viewer in IBM i Access 7.1 on Windows allows remote attackers to cause a denial of service (viewer crash) via a crafted workbench file. AFP Workbench Viewer en IBM i Access 7.1 en Windows permite a atacantes remotos provocar una denegación de servicio (caída de visor) a través de un archivo workbench manipulado. • http://www-01.ibm.com/support/docview.wss?uid=nas8N1020995 http://www-01.ibm.com/support/docview.wss?uid=swg1SI57907 • CWE-20: Improper Input Validation •
CVSS: 5.5EPSS: 0%CPEs: 2EXPL: 1CVE-2015-7422 – IBM i Access 7.1 - Local Buffer Overflow / Code Execution
https://notcve.org/view.php?id=CVE-2015-7422
Buffer overflow in IBM i Access 7.1 on Windows allows local users to cause a denial of service (application crash) via unspecified vectors. Desbordamiento del buffer en IBM i Access 7.1 en Windows permite a usuarios locales provocar una denegación de servicio (caída de aplicación) a través de vectores no especificados. IBM i Access for Windows is vulnerability to a stack buffer overflow denial of service vulnerability. • https://www.exploit-db.com/exploits/38751 http://www-01.ibm.com/support/docview.wss?uid=nas8N1020996 http://www-01.ibm.com/support/docview.wss?uid=swg1SI57907 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 8.8EPSS: 0%CPEs: 2EXPL: 1CVE-2015-2023 – IBM i Access 7.1 - Local Buffer Overflow / Code Execution
https://notcve.org/view.php?id=CVE-2015-2023
Buffer overflow in IBM i Access 7.1 on Windows allows local users to gain privileges via unspecified vectors. Desbordamiento de buffer en IBM i Access 7.1 en Windows permite a usuarios locales obtener privilegios a través de vectores no especificados. IBM i Access for Windows is vulnerable to a buffer overflow. A local attacker could overflow a buffer and execute arbitrary code on the Windows PC. • https://www.exploit-db.com/exploits/38751 http://www-01.ibm.com/support/docview.wss?uid=nas8N1020996 http://www-01.ibm.com/support/docview.wss?uid=swg1SI57907 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.2EPSS: 0%CPEs: 3EXPL: 0CVE-2014-8920
https://notcve.org/view.php?id=CVE-2014-8920
Buffer overflow in the Data Transfer Program in IBM i Access 5770-XE1 5R4, 6.1, and 7.1 on Windows allows local users to gain privileges via unspecified vectors. Desbordamiento de buffer en el programa de la transferencia de datos en (Data Transfer Program) in IBM i Access 5770-XE1 5R4, 6.1, y 7.1 en Windows permite a usuarios locales ganar privilegios a través de vectores no especificados. • http://secunia.com/advisories/62532 http://www-01.ibm.com/support/docview.wss?uid=nas8N1020518 https://exchange.xforce.ibmcloud.com/vulnerabilities/99311 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 8.5EPSS: 0%CPEs: 3EXPL: 0CVE-2013-5385
https://notcve.org/view.php?id=CVE-2013-5385
The OSPF implementation in IBM i 6.1 and 7.1, in z/OS on zSeries servers, and in Networking Operating System (aka NOS, formerly BLADE Operating System) does not properly validate Link State Advertisement (LSA) type 1 packets before performing operations on the LSA database, which allows remote attackers to cause a denial of service (routing disruption) or obtain sensitive packet information via a crafted LSA packet, a related issue to CVE-2013-0149. La implementación OSPF en IBM i versiones 6.1 y 7.1, en z/OS sobre servidores zSeries y en el Networking Operating System (también se conoce como NOS, anteriormente BLADE Operating System), no comprueba apropiadamente Link State Advertisement (LSA ) los paquetes del tipo 1 antes de realizar las operaciones en la base de datos LSA, que permite a los atacantes remotos causar una denegación de servicio (interrupción del ruteo) u obtener información confidencial del paquete por medio de un paquete LSA diseñado, un problema relacionado con el CVE-2013-0149. • http://www-01.ibm.com/support/docview.wss?uid=isg3T1019716 http://www-01.ibm.com/support/docview.wss?uid=nas8N1010309 http://www.kb.cert.org/vuls/id/229804 http://www.kb.cert.org/vuls/id/BLUU-985QTG • CWE-20: Improper Input Validation •