Lucene search

PRIOn knowledge basePRION:CVE-2007-1228

HistoryMar 02, 2007 - 10:19 p.m.

Design/Logic Flaw

2007-03-0222:19:00

PRIOn knowledge base

www.prio-n.com

6.8 Medium

AI Score

Confidence

Low

4.4 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:M/Au:S/C:C/I:N/A:N

0.001 Low

EPSS

Percentile

25.5%

JSON

IBM DB2 UDB 8.2 before Fixpak 7 (aka fixpack 14), and DB2 9 before Fix Pack 2, on UNIX allows the “fenced” user to access certain unauthorized directories.

CPENameOperatorVersion
db2eq8.2 fp5
db2eq8.2 fp3
db2eq8.2 fp2
db2eq8.2 fp6
db2eq8.2 fp1
db2eq8.2
db2eq8.2 fp4
db2eq9.0 fp1
db2eq9.0

Name	Operator	Version
db2	eq	8.2 fp5
db2	eq	8.2 fp3
db2	eq	8.2 fp2
db2	eq	8.2 fp6
db2	eq	8.2 fp1
db2	eq	8.2
db2	eq	8.2 fp4
db2	eq	9.0 fp1
db2	eq	9.0

References

secunia.com/advisories/24387

www-1.ibm.com/support/docview.wss?uid=swg1IY86711

www-1.ibm.com/support/docview.wss?uid=swg1IY87492

www.securityfocus.com/bid/22729

www.securitytracker.com/id?1017731

6.8 Medium

AI Score

Confidence

Low

4.4 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:M/Au:S/C:C/I:N/A:N

0.001 Low

EPSS

Percentile

25.5%

JSON

Related for PRION:CVE-2007-1228