CVSS2
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
AI Score
Confidence
High
EPSS
Percentile
17.6%
Untrusted search path vulnerability in IBM DB2 9.7 through FP11, 10.1 through FP5, 10.5 before FP8, and 11.1 GA on Linux, AIX, and HP-UX allows local users to gain privileges via a Trojan horse library that is accessed by a setuid or setgid program.
Vendor | Product | Version | CPE |
---|---|---|---|
ibm | db2 | 9.7 | cpe:2.3:a:ibm:db2:9.7:*:*:*:*:*:*:* |
ibm | db2 | 9.7 | cpe:2.3:a:ibm:db2:9.7:*:*:*:advanced_enterprise:*:*:* |
ibm | db2 | 9.7 | cpe:2.3:a:ibm:db2:9.7:*:*:*:advanced_workgroup:*:*:* |
ibm | db2 | 9.7 | cpe:2.3:a:ibm:db2:9.7:*:*:*:enterprise:*:*:* |
ibm | db2 | 9.7 | cpe:2.3:a:ibm:db2:9.7:*:*:*:express:*:*:* |
ibm | db2 | 9.7 | cpe:2.3:a:ibm:db2:9.7:*:*:*:workgroup:*:*:* |
ibm | db2 | 9.7.0.1 | cpe:2.3:a:ibm:db2:9.7.0.1:*:*:*:*:*:*:* |
ibm | db2 | 9.7.0.1 | cpe:2.3:a:ibm:db2:9.7.0.1:*:*:*:advanced_enterprise:*:*:* |
ibm | db2 | 9.7.0.1 | cpe:2.3:a:ibm:db2:9.7.0.1:*:*:*:advanced_workgroup:*:*:* |
ibm | db2 | 9.7.0.1 | cpe:2.3:a:ibm:db2:9.7.0.1:*:*:*:enterprise:*:*:* |
www-01.ibm.com/support/docview.wss?uid=swg1IT16921
www-01.ibm.com/support/docview.wss?uid=swg1IT17010
www-01.ibm.com/support/docview.wss?uid=swg1IT17011
www-01.ibm.com/support/docview.wss?uid=swg1IT17012
www-01.ibm.com/support/docview.wss?uid=swg21990061
www.securityfocus.com/bid/93012
www.securitytracker.com/id/1036837
CVSS2
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
AI Score
Confidence
High
EPSS
Percentile
17.6%