9 matches found
PT-2025-45485
Name of the Vulnerable Software and Affected Versions IBM Db2 versions 10.5.0 through 10.5.11 IBM Db2 versions 11.1.0 through 11.1.4.7 IBM Db2 versions 11.5.0 through 11.5.9 IBM Db2 versions 12.1.0 through 12.1.3 Description The software contains a flaw that may allow an authenticated user to...
IBM DB2 10.5 < 10.5.0 FP11 41247 / 11.1 < 11.1.4 FP6 41246 / 11.5 < 11.5.8 FP0 26513 Information Disclosure (Unix)
According to its self-reported version number, IBM Db2 is affected by an information disclosure due to improper privilege management when a specially crafted table access is used. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version...
IBM Db2 Stack Buffer Overflow Vulnerability (Dec 2017)
IBM Db2 is prone to stack buffer overflow vulnerability. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:ibm:db2"; ifdescription...
IBM Db2 Command Line Processor Buffer Overflow Vulnerability (Jun 2017)
IBM Db2 is prone to a buffer overflow vulnerability. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:ibm:db2"; ifdescription...
IBM DB2 10.5 < Fix Pack 8 Multiple DoS
According to its version, the installation of IBM DB2 10.5 running on the remote host is prior to Fix Pack 8. It is, therefore, affected by the following vulnerabilities : - A denial of service vulnerability exists in the SQLNPSCOPETRIAL function due to improper handling of SQL statements. An...
IBM DB2 10.5 < Fix Pack 8 Multiple Vulnerabilities
According to its version, the installation of IBM DB2 10.5 running on the remote host is prior to Fix Pack 8. It is, therefore, affected by the following vulnerabilities : - A local privilege escalation vulnerability exists due to insecurely loading binaries planted in a location that a SETGID or...
IBM DB2 10.5 < Fix Pack 6 Multiple Vulnerabilities (Bar Mitzvah)
According to its version, the installation of IBM DB2 10.5 running on the remote host is prior to Fix Pack 6. It is, therefore, affected by the following vulnerabilities : - A flaw exists in the IBM Global Security Kit GSKit when handling RSA temporary keys in a non-export RSA key exchange...
Information disclosure
IBM DB2 10.5 before FP4 on Linux and AIX creates temporary files during CDE table LOAD operations, which allows local users to obtain sensitive information by reading a file while a LOAD is occurring...
CVE-2013-6744
The Stored Procedure infrastructure in IBM DB2 9.5, 9.7 before FP9a, 10.1 before FP3a, and 10.5 before FP3a on Windows allows remote authenticated users to gain privileges by leveraging the CONNECT privilege and the CREATEEXTERNALROUTINE authority...