Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm iseries as 400 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2005-1238
By design, the built-in FTP server for iSeries AS/400 systems does not support a restricted document root, which allows malicious users to read or write arbitrary files, including sensitive QSYS databases, via a full pathname in a GET or PUT request.
Ibm Iseries As 400
NA
CVE-2005-1133
The POP3 server in IBM iSeries AS/400 returns different error messages when the user exists or not, which allows remote malicious users to determine valid user IDs on the server.
Ibm Iseries As 400
NA
CVE-2005-1025
The FTP server in AS/400 4.3, when running in IFS mode, allows remote malicious users to obtain sensitive information via a symlink attack using RCMD and the ADDLNK utility, as demonstrated using the QSYS.LIB library.
Ibm Iseries As 400 4.3
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started