Ibm: >> U2 Universe >> 10.0.0.9 Security Vulnerabilities
cci_dir in IBM U2 UniVerse 10.0.0.9 and earlier creates hard links and unlinks files as root, which allows local users to gain privileges by deleting and overwriting arbitrary files.
CVSS Score
7.8
EPSS Score
0.0
Published
2003-08-18
uvadmsh in IBM U2 UniVerse 10.0.0.9 and earlier trusts the user-supplied -uv.install command line option to find and execute the uv.install program, which allows local users to gain privileges by providing a pathname that is under control of the user.
CVSS Score
4.6
EPSS Score
0.003
Published
2003-08-18
Buffer overflow in uvadmsh in IBM U2 UniVerse 10.0.0.9 and earlier allows the uvadm user to execute arbitrary code via a long -uv.install command line argument.
CVSS Score
7.2
EPSS Score
0.001
Published
2003-08-18
IBM UniVerse with UV/ODBC allows attackers to cause a denial of service (client crash or server CPU consumption) via a query with an invalid link between tables, possibly via a buffer overflow.
CVSS Score
5.0
EPSS Score
0.005
Published
2002-07-31