| CVE-2009-2751 |
medium |
— |
4.3 |
|
|
ibm |
17y ago |
IBM WebSphere Commerce 7.0 uses the same cryptographic key for session attributes and merchant data encryption, which has unspecified impact and remote attack vectors. |
| CVE-2009-2750 |
medium |
— |
5.5 |
|
|
ibm |
17y ago |
IBM WebSphere Service Registry and Repository (WSRR) 6.3.0 before FP2 does not have the intended configuration properties, which allows remote authenticated users to obtain unspecified data access vi… |
| CVE-2010-0472 |
medium |
— |
5.0 |
|
|
ibm |
17y ago |
kuddb2 in Tivoli Monitoring for DB2, as distributed in IBM DB2 9.7 FP1 on Linux, allows remote attackers to cause a denial of service (daemon crash) via a certain byte sequence. |
| CVE-2010-0462 |
medium |
— |
7.5 |
EXP |
|
ibm |
17y ago |
Heap-based buffer overflow in IBM DB2 9.1 before FP9, 9.5 before FP6, and 9.7 before FP2 allows remote authenticated users to have an unspecified impact via a SELECT statement that has a long column … |
| CVE-2008-7253 |
medium |
— |
4.3 |
|
|
ibm |
17y ago |
The default configuration of the web server in IBM Lotus Domino Server, possibly 6.0 through 8.0, enables the HTTP TRACE method, which makes it easier for remote attackers to steal cookies and authen… |
