Lucene search
HistoryNov 17, 2003 - 5:00 a.m.
CVE-2003-0837
ibm
db2
udb
7.2
windows
stack-based buffer overflow
cve-2003-0837
security vulnerability
nvd
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
7.8 High
AI Score
Confidence
High
0.008 Low
EPSS
Percentile
81.3%
Stack-based buffer overflow in IBM DB2 Universal Data Base 7.2 for Windows, before Fixpak 10a, allows attackers with “Connect” privileges to execute arbitrary code via the INVOKE command.
Affected configurations
Node
ibmdb2_universal_databaseMatch7.2linux
| CPE | Name | Operator | Version |
|---|---|---|---|
| ibm:db2_universal_database | ibm db2 universal database | eq | 7.2 |
Related
securityvulns
securityvulns
ptl-2003-02: IBM DB2 INVOKE Command Stack Overflow Vulnerability
2003-10-03 00:00:00
cvelist
cvelist
CVE-2003-0837
2003-10-08 04:00:00
nvd
nvd
CVE-2003-0837
2003-11-17 05:00:00
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
7.8 High
AI Score
Confidence
High
0.008 Low
EPSS
Percentile
81.3%
Related for CVE-2003-0837