Lucene search
MitreCVELIST:CVE-2009-4438HistoryOct 03, 2022 - 4:24 p.m.
CVE-2009-4438
2022-10-0316:24:02
mitre
www.cve.org
ibm db2
query compiler
privilege requirements
remote user
The Query Compiler, Rewrite, and Optimizer component in IBM DB2 9.1 before FP8, 9.5 before FP5, and 9.7 before FP1 does not enforce privilege requirements for access to a (1) sequence or (2) global-variable object, which allows remote authenticated users to make use of data via unspecified vectors.
References
ftp://ftp.software.ibm.com/ps/products/db2/fixes/english-us/aparlist/db2_v95/APARLIST.TXT
secunia.com/advisories/37759
www-01.ibm.com/support/docview.wss?uid=swg1IC62543
www-01.ibm.com/support/docview.wss?uid=swg1IC62583
www-01.ibm.com/support/docview.wss?uid=swg1IC64852
www-01.ibm.com/support/docview.wss?uid=swg21293566
www-01.ibm.com/support/docview.wss?uid=swg21412902
www.securityfocus.com/bid/37332
www.vupen.com/english/advisories/2009/3520
Related
cve
cve
CVE-2009-4438
2022-10-03 16:24:02
nvd
nvd
CVE-2009-4438
2009-12-28 19:30:00
prion
prion
Code injection
2009-12-28 19:30:00
openvas
openvas
IBM Db2 Self Tuning Memory Manager (STMM) DOS Vulnerability - Linux
2009-12-23 00:00:00
IBM DB2 Self Tuning Memory Manager (STMM) DOS Vulnerability (Windows)
2009-12-23 00:00:00
IBM Db2 Self Tuning Memory Manager (STMM) DOS Vulnerability - Windows
2009-12-23 00:00:00
nessus
nessus
IBM DB2 9.5 < Fix Pack 5 Multiple Unspecified Vulnerabilities
2009-12-16 00:00:00