CVE-2007-1027

CVE-2007-1027 affects IBM DB2 prior to 9 Fix Pack 2 for Linux/Unix. The vulnerability arises from a symlink attack on the temporary file DB2DIAG.LOG, allowing local users to overwrite arbitrary files via setuid DB2 binaries. The description in the provided documents confirms a local-privilege con...