4 results (0.009 seconds)

CVSS: 10.0EPSS: 0%CPEs: 14EXPL: 0

Unspecified vulnerability in the single sign-on functionality in the Web Services implementation in IBM DB2 Content Manager (CM) Toolkit 8.3 before FP13 on z/OS and DB2 Information Integrator for Content 8.3 before FP13 has unknown impact and remote attack vectors. Vulnerabilidad no especificada en la funcionalidad sing-on en la implementación de Web Services en IBM DB2 Content Manager (CM) Toolkit v8.3 anteriores a FP13 en z/OS y DB2 Information Integrator para Content v8.3 anteriores a FP13, tiene un impacto y vectores de ataque desconocidos. • http://secunia.com/advisories/39025 http://securitytracker.com/id?1023726 http://www-01.ibm.com/support/docview.wss?uid=isg1PM03804 http://www-01.ibm.com/support/docview.wss?uid=swg1IO11283 http://www-01.ibm.com/support/docview.wss?uid=swg27018205&aid=1 http://www.osvdb.org/63079 http://www.securityfocus.com/bid/38833 http://www.vupen.com/english/advisories/2010/0656 •

CVSS: 10.0EPSS: 1%CPEs: 1EXPL: 0

Unspecified vulnerability in IBM DB2 Content Manager before 8.3 FP8 has unknown impact and attack vectors related to the AllowedTrustedLogin privilege. Vulnerabilidad sin especificar en IBM DB2 Content Manager, antes de 8.3 FP8, tiene un efecto y unos vectores de ataque desconocidos relacionados con los privilegios de AllowedTrustedLogin • http://publib.boulder.ibm.com/infocenter/cmgmt/v8r3m0/topic/com.ibm.cmgmtreadmefp.doc/aparlist.htm http://secunia.com/advisories/29647 http://www-1.ibm.com/support/docview.wss?uid=swg1IO07690 http://www-1.ibm.com/support/docview.wss?uid=swg27011946&aid=1 http://www.securityfocus.com/bid/28567 http://www.vupen.com/english/advisories/2008/1070/references https://exchange.xforce.ibmcloud.com/vulnerabilities/41585 • CWE-264: Permissions, Privileges, and Access Controls •

CVSS: 5.0EPSS: 0%CPEs: 9EXPL: 0

INSO service in IBM DB2 Content Manager before 8.2 Fix Pack 10 on AIX allows attackers to cause a denial of service (application crash) via unknown attack vectors involving LZH files. • http://secunia.com/advisories/17388 http://www-1.ibm.com/support/docview.wss?uid=swg27005891&aid=3#wq213 http://www.osvdb.org/20708 http://www.securityfocus.com/bid/15376 https://exchange.xforce.ibmcloud.com/vulnerabilities/23089 •

CVSS: 2.1EPSS: 0%CPEs: 9EXPL: 0

db2fmp process in IBM DB2 Content Manager before 8.2 Fix Pack 10 allows local users to cause a denial of service (CPU consumption) by importing a corrupted Microsoft Excel file, aka "CORRUPTED EXEL FILE WILL CAUSE TEXT SEARCH PROCESS LOOPING." • http://secunia.com/advisories/17388 http://www-1.ibm.com/support/docview.wss?uid=swg1IO00737 http://www.osvdb.org/20707 http://www.securityfocus.com/bid/15376 https://exchange.xforce.ibmcloud.com/vulnerabilities/23088 •