Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm iseries as 400 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2005-1238
By design, the built-in FTP server for iSeries AS/400 systems does not support a restricted document root, which allows malicious users to read or write arbitrary files, including sensitive QSYS databases, via a full pathname in a GET or PUT request.
Ibm Iseries As 400
5
CVSSv2
CVE-2005-1133
The POP3 server in IBM iSeries AS/400 returns different error messages when the user exists or not, which allows remote malicious users to determine valid user IDs on the server.
Ibm Iseries As 400
5
CVSSv2
CVE-2005-1025
The FTP server in AS/400 4.3, when running in IFS mode, allows remote malicious users to obtain sensitive information via a symlink attack using RCMD and the ADDLNK utility, as demonstrated using the QSYS.LIB library.
Ibm Iseries As 400 4.3
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
race condition
CVE-2024-4249
CVE-2024-4244
CVE-2023-20198
TCP
CVE-2022-48648
CVE-2022-48636
CVE-2024-21345
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started