IBM U2 UniVerse

CPE Details

IBM U2 UniVerse
ibm
u2_universe
-
2007-08-23
19h05 +00:00
2007-09-14
15h36 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:ibm:u2_universe:-:*:*:*:*:*:*:*

Informations

Vendor

ibm

Product

u2_universe

Version

-

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2003-0578 2003-07-17 02h00 +00:00 cci_dir in IBM U2 UniVerse 10.0.0.9 and earlier creates hard links and unlinks files as root, which allows local users to gain privileges by deleting and overwriting arbitrary files.
7.8
High
CVE-2003-0579 2003-07-17 02h00 +00:00 uvadmsh in IBM U2 UniVerse 10.0.0.9 and earlier trusts the user-supplied -uv.install command line option to find and execute the uv.install program, which allows local users to gain privileges by providing a pathname that is under control of the user.
4.6
CVE-2003-0580 2003-07-17 02h00 +00:00 Buffer overflow in uvadmsh in IBM U2 UniVerse 10.0.0.9 and earlier allows the uvadm user to execute arbitrary code via a long -uv.install command line argument.
7.2
CVE-2002-1450 2003-03-18 04h00 +00:00 IBM UniVerse with UV/ODBC allows attackers to cause a denial of service (client crash or server CPU consumption) via a query with an invalid link between tables, possibly via a buffer overflow.
5
The information presented on CVE Find originates from several carefully selected reference sources. CVE data is provided by MITRE Corporation and the National Vulnerability Database (NVD). The Known Exploited Vulnerabilities (KEV) catalog is sourced from the Cybersecurity and Infrastructure Security Agency (CISA), while EPSS scores come from FIRST.org. Additionally, data regarding software weaknesses (CWE) and common attack patterns (CAPEC) is maintained by MITRE Corporation, and information on hardware and software configurations (CPE) is provided by the NVD.