Lucene search

PRIOn knowledge basePRION:CVE-2009-2859

HistoryAug 19, 2009 - 5:30 p.m.

Command injection

2009-08-1917:30:00

PRIOn knowledge base

www.prio-n.com

6.6 Medium

AI Score

Confidence

Low

4.6 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

0.0004 Low

EPSS

Percentile

12.3%

JSON

IBM DB2 8.1 before FP18 allows attackers to obtain unspecified access via a das command.

CPENameOperatorVersion
db2eq8.1 fp1
db2eq8.1 fp10
db2eq8.1 fp6c
db2eq8.1 fp2
db2le8.1
db2eq8.1 fp5
db2eq8.1 fp8
db2eq8.1 fp8a
db2eq8.1 fp14
db2eq8.1 fp11

Name	Operator	Version
db2	eq	8.1 fp1
db2	eq	8.1 fp10
db2	eq	8.1 fp6c
db2	eq	8.1 fp2
db2	le	8.1
db2	eq	8.1 fp5
db2	eq	8.1 fp8
db2	eq	8.1 fp8a
db2	eq	8.1 fp14
db2	eq	8.1 fp11

Rows per page:

1-10 of 241

References

ftp://ftp.software.ibm.com/ps/products/db2/fixes/english-us/aparlist/db2_v82/APARLIST.TXT

secunia.com/advisories/36313

www-01.ibm.com/support/docview.wss?uid=swg1IZ34149

www-01.ibm.com/support/docview.wss?uid=swg24024075

www.vupen.com/english/advisories/2009/2293

6.6 Medium

AI Score

Confidence

Low

4.6 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

0.0004 Low

EPSS

Percentile

12.3%

JSON

Related for PRION:CVE-2009-2859