Lucene search

PRIOn knowledge basePRION:CVE-2008-0699

HistoryFeb 12, 2008 - 1:00 a.m.

Code injection

2008-02-1201:00:00

PRIOn knowledge base

www.prio-n.com

7.3 High

AI Score

Confidence

Low

0.02 Low

EPSS

Percentile

88.9%

JSON

Unspecified vulnerability in the ADMIN_SP_C procedure (SYSPROC.ADMIN_SP_C) in IBM DB2 UDB before 8.2 Fixpak 16, 9.1 before FP4a, and 9.5 before FP1 allows remote authenticated users to execute arbitrary code via unspecified attack vectors.

CPENameOperatorVersion
db2eq8.2 fp12
db2eq8.2 fp7
db2eq9.1 fp4
db2eq9.5
db2eq9.1 fp1
db2eq8.2 fp5
db2eq8.2 fp3
db2eq8.2 fp8
db2eq8.2 fp14
db2eq9.1

Name	Operator	Version
db2	eq	8.2 fp12
db2	eq	8.2 fp7
db2	eq	9.1 fp4
db2	eq	9.5
db2	eq	9.1 fp1
db2	eq	8.2 fp5
db2	eq	8.2 fp3
db2	eq	8.2 fp8
db2	eq	8.2 fp14
db2	eq	9.1

Rows per page:

1-10 of 241

References

ftp://ftp.software.ibm.com/ps/products/db2/fixes/english-us/aparlist/db2_v82/APARLIST.TXT

osvdb.org/41795

secunia.com/advisories/28771

secunia.com/advisories/29022

secunia.com/advisories/29784

www-1.ibm.com/support/docview.wss?uid=swg1IZ06972

www-1.ibm.com/support/docview.wss?uid=swg1IZ06973

www-1.ibm.com/support/docview.wss?uid=swg1IZ10917

www.appsecinc.com/resources/alerts/db2/2008-02.shtml

www.securityfocus.com/archive/1/491075/100/0/threaded

www.vupen.com/english/advisories/2008/0401