IBM WebSphere MQ 6.0.2.9

CPE Details

IBM WebSphere MQ 6.0.2.9
ibm
websphere_mq
6.0.2.9
2010-10-21
11h23 +00:00
2010-10-21
19h02 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:ibm:websphere_mq:6.0.2.9:*:*:*:*:*:*:*

Informations

Vendor

ibm

Product

websphere_mq

Version

6.0.2.9

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2016-3013 2017-02-22 18h00 +00:00 IBM WebSphere MQ 8.0 could allow an authenticated user to crash the MQ channel due to improper data conversion handling. IBM Reference #: 1998661.
6.5
Medium
CVE-2016-3052 2017-02-22 18h00 +00:00 Under non-standard configurations, IBM WebSphere MQ might send password data in clear text over the network. This data could be intercepted using man in the middle techniques.
5.9
Medium
CVE-2015-0176 2015-04-26 23h00 +00:00 Cross-site scripting (XSS) vulnerability in MQ XR WebSockets Listener in WMQ Telemetry in IBM WebSphere MQ 8.0 before 8.0.0.2 allows remote attackers to inject arbitrary web script or HTML via a crafted URI that is included in an error response.
4.3
CVE-2011-1224 2011-07-07 19h00 +00:00 IBM WebSphere MQ 6.0 before 6.0.2.11 and 7.0 before 7.0.1.5 does not use the CRL Distribution Points (CDP) certificate extension, which might allow man-in-the-middle attackers to spoof an SSL partner via a revoked certificate for a (1) client, (2) queue manager, or (3) application.
4.3
CVE-2011-0314 2011-01-11 23h00 +00:00 Heap-based buffer overflow in IBM WebSphere MQ 6.0 before 6.0.2.11 and 7.0 before 7.0.1.5 allows remote authenticated users to execute arbitrary code or cause a denial of service (queue manager crash) by inserting an invalid message into the queue.
6.5
CVE-2010-0782 2010-10-20 15h00 +00:00 IBM WebSphere MQ 6.x before 6.0.2.10 and 7.x before 7.0.1.3 allows remote attackers to spoof X.509 certificate authentication, and send or receive channel messages, via a crafted Subject Distinguished Name (DN) value in a certificate.
4.3