CVE-2005-4871
IBM DB2 8.1 contains a vulnerability where certain XML functions run with the DB2 process privileges instead of the logged-in user, enabling a remote attacker to create or overwrite files via XMLFileFromVarchar or XMLFileFromClob, or to read files via XMLVarcharFromFile or XMLClobFromFile. The NV...