CVE-2012-0711

Integer signedness error in the db2dasrrm process in the DB2 Administration Server DAS in IBM DB2 9.1 through FP11, 9.5 before FP9, and 9.7 through FP5 on UNIX platforms allows remote attackers to execute arbitrary code via a crafted request that triggers a heap-based buffer overflow...

IBM DB2 Administration Server (DAS) Buffer Overflow Vulnerability

The host is running IBM DB2 and is prone to buffer overflow vulnerability. OpenVAS Vulnerability Test $Id: gbibmdb2dasbofvuln.nasl 7052 2017-09-04 11:50:51Z teissa $ IBM DB2 Administration Server DAS Buffer Overflow Vulnerability Authors: Antu Sanadi Copyright: Copyright c 2011 Greenbone Networks...

IBM DB2 security vulnerabilities

Buffer overflow and integer overflow in db2dasrrm TCP/524...

IBM DB2 9.1 < Fix Pack 10 Multiple Vulnerabilities

According to its version, the installation of IBM DB2 9.1 running on the remote host is prior to Fix Pack 10. It is, therefore, affected by one or more of the following issues : - It is possible to execute non-DDL statements even after an user's DBADM authority has been revoked. IC66811 - Multipl...

IBM DB2 db2dasrrm validateUser Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of IBM DB2. Authentication is not required to exploit this vulnerability. The specific flaw exists within the db2dasrrm process responsible for handling queries to the com.ibm.db2.das.core.DasSysCmd...

IBM DB2 9.7 < Fix Pack 3 Multiple Vulnerabilities

According to its version, the installation of IBM DB2 9.7 running on the remote host is prior Fix Pack 3. It is, therefore, affected by one or more of the following issues : - When privileges on a database object are revoked from PUBLIC, the dependent functions are not marked INVALID. As a result...

IBM DB2数据库db2dasrrm缓冲区溢出和文件创建漏洞

BUGTRAQ ID: 27870 CVECAN ID: CVE-2007-5758,CVE-2007-5664 IBM DB2是一个大型的商业关系数据库系统，面向电子商务、商业资讯、内容管理、客户关系管理等应用，可运行于AIX、HP-UX、Linux、Solaris、Windows等系统。...