6.7 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
5.1%
Certain setuid DB2 binaries in IBM DB2 before 9 Fix Pack 2 for Linux and Unix allow local users to overwrite arbitrary files via a symlink attack on the DB2DIAG.LOG temporary file.
osvdb.org/34024
secunia.com/advisories/24213
www-1.ibm.com/support/docview.wss?uid=swg1IY94817
www.securityfocus.com/bid/22614
www.securitytracker.com/id?1017665
www.securitytracker.com/id?1017695
www.vupen.com/english/advisories/2007/0652