VYPR

U2 Universe

by IBM

CVEs (4)

  • CVE-2003-0578HigAug 18, 2003
    risk 0.51cvss 7.8epss 0.00

    cci_dir in IBM U2 UniVerse 10.0.0.9 and earlier creates hard links and unlinks files as root, which allows local users to gain privileges by deleting and overwriting arbitrary files.

  • CVE-2003-0579Aug 18, 2003
    risk 0.03cvss epss 0.01

    uvadmsh in IBM U2 UniVerse 10.0.0.9 and earlier trusts the user-supplied -uv.install command line option to find and execute the uv.install program, which allows local users to gain privileges by providing a pathname that is under control of the user.

  • CVE-2003-0580Aug 18, 2003
    risk 0.00cvss epss 0.01

    Buffer overflow in uvadmsh in IBM U2 UniVerse 10.0.0.9 and earlier allows the uvadm user to execute arbitrary code via a long -uv.install command line argument.

  • CVE-2002-1450Jul 31, 2002
    risk 0.00cvss epss 0.01

    IBM UniVerse with UV/ODBC allows attackers to cause a denial of service (client crash or server CPU consumption) via a query with an invalid link between tables, possibly via a buffer overflow.