Authorization

2008-02-1201:00:00

PRIOn knowledge base

www.prio-n.com

7 High

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

65.1%

IBM DB2 UDB before 8.2 Fixpak 16 does not properly check authorization for the ALTER TABLE statement, which has unknown impact and attack vectors.

CPENameOperatorVersion
db2eq8.2.0-fixpack15

CPE	Name	Operator	Version
	db2	eq	8.2.0-fixpack15

References

ftp://ftp.software.ibm.com/ps/products/db2/fixes/english-us/aparlist/db2_v82/APARLIST.TXT

secunia.com/advisories/28771

www-1.ibm.com/support/docview.wss?uid=swg1IZ07337

www.vupen.com/english/advisories/2008/0401