厂商或团体 ibm 的搜索结果 (2911)

CVE-2015-5073(发布:2016-12-13 11:59:06)NMPS
CVSS6.4

[原文]Heap-based buffer overflow in the find_fixedlength function in pcre_compile.c in PCRE before 8.38 allows remote attackers to cause a denial of service (crash) or obtain sensitive information from heap memory and possibly bypass the ASLR protection mechanism via a crafted regular expression with an excess closing parenthesis.

CVE-2015-3217(发布:2016-12-13 11:59:02)NMCPS
CVSS5.0

[CNNVD]PCRE‘match()’函数基于栈的缓冲区溢出漏洞--PCRE(Perl Compatible Regular Expressions)是软件开发者Philip Hazel所研发的一个使用C语言编写的开源正则表达式函数库。 PCRE中存在基于栈的缓冲区溢出漏洞。攻击者可利用该漏洞在受影响应用程序上下文中执行任意代码,也可能造成拒绝服...

CVE-2016-3055(发布:2016-12-01 06:59:09)NMS
CVSS5.5

[原文]IBM FileNet Workplace 4.0.2 before 4.0.2.14 LA012 allows remote authenticated users to read arbitrary files or cause a denial of service (memory consumption) via an XML document containing an external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue.

CVE-2016-3047(发布:2016-12-01 06:59:08)NMS
CVSS4.9

[原文]Open redirect vulnerability in IBM FileNet Workplace 4.0.2 through 4.0.2.14 IF001 allows remote authenticated users to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors.

CVE-2016-3044(发布:2016-12-01 06:59:07)NMS
CVSS4.9

[原文]The Linux kernel component in IBM PowerKVM 2.1 before 2.1.1.3-65.10 and 3.1 before 3.1.0.2 allows guest OS users to cause a denial of service (host OS infinite loop and hang) via unspecified vectors.

CVE-2016-3033(发布:2016-12-01 06:59:05)NMS
CVSS5.5

[原文]IBM AppScan Source 8.7 through 9.0.3.3 allows remote authenticated users to read arbitrary files or cause a denial of service (memory consumption) via an XML document containing an external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue.

12345678下一页尾页 第1页 / 共486页

关于SCAP中文社区

SCAP中文社区是国内第一个以SCAP为主题的中文开放社区。了解更多信息,请查阅[关于本站]

版权声明

CVE/CWE/OVAL均为MITRE公司的注册商标,它们的官方数据源均保存在MITRE公司的相关网站