2 matches found
Security Bulletin: IBM Security Guardium is affected by Using Components with Known Vulnerabilities vulnerability
Summary IBM Security Guardium has addressed the following vulnerabilities Vulnerability Details CVEID: CVE-2012-3324 DESCRIPTION: IBM DB2, when running on Microsft Windows, could allow a remote authenticated attacker to traverse directories on the system, caused by improper validation of...
CVE-2011-1846
CVE-2011-1846 affects IBM DB2 9.5 before FP7 and 9.7 before FP4 on Linux/UNIX/Windows. The vulnerability arises from failure to properly revoke role membership from groups, allowing remote authenticated users to execute non-DDL statements by leveraging previously inherited possession of a role. T...