Lucene search
PRIOn knowledge basePRION:CVE-2010-3475HistorySep 20, 2010 - 10:00 p.m.
Sql injection
2010-09-2022:00:00
PRIOn knowledge base
www.prio-n.com
4
IBM DB2 9.7 before FP3 does not properly enforce privilege requirements for execution of entries in the dynamic SQL cache, which allows remote authenticated users to bypass intended access restrictions by leveraging the cache to execute an UPDATE statement contained in a compiled compound SQL statement.
References
osvdb.org/68122
secunia.com/advisories/41444
www-01.ibm.com/support/docview.wss?uid=swg1IC70406
www.ibm.com/support/docview.wss?uid=swg21446455
www.securityfocus.com/bid/43291
www.securitytracker.com/id?1024458
www.vupen.com/english/advisories/2010/2425
exchange.xforce.ibmcloud.com/vulnerabilities/61873
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14609
Related
cvelist
cvelist
CVE-2010-3475
2010-09-20 21:00:00
nvd
nvd
CVE-2010-3475
2010-09-20 22:00:04
cve
cve
CVE-2010-3475
2010-09-20 22:00:04
openvas
openvas
IBM DB2 Multiple Security Bypass Vulnerabilities
2010-09-23 00:00:00
IBM Db2 Multiple Security Bypass Vulnerabilities
2010-09-23 00:00:00
nessus
nessus
IBM DB2 9.7 < Fix Pack 3 Multiple Vulnerabilities
2010-11-02 00:00:00