Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

seebug.org
seebug.orgadded 2008/04/17 12:0 a.m.36 views

IBM DB2数据库db2dasrrm缓冲区溢出和文件创建漏洞

BUGTRAQ ID: 27870 CVECAN ID: CVE-2007-5758,CVE-2007-5664 IBM DB2是一个大型的商业关系数据库系统,面向电子商务、商业资讯、内容管理、客户关系管理等应用,可运行于AIX、HP-UX、Linux、Solaris、Windows等系统。...

6.9CVSS6.4AI score0.00074EPSS
Exploits2
Prion
Prionadded 2007/08/18 9:17 p.m.26 views

Race condition

Multiple race conditions in IBM DB2 UDB 8 before Fixpak 15 and 9.1 before Fixpak 3 allow local users to gain root privileges via a symlink attack on certain files...

6.9CVSS6.6AI score0.00049EPSS
Exploits1References11Affected Software1
NVD
NVDadded 2007/08/18 9:17 p.m.18 views

CVE-2007-4423

Stack-based buffer overflow in the AUTHLISTGROUPSFORAUTHID function in IBM DB2 UDB 9.1 before Fixpak 3 allows attackers to cause a denial of service and possibly execute arbitrary code via a long argument...

5CVSS7.8AI score0.01056EPSS
Exploits0References11
Prion
Prionadded 2007/08/18 9:17 p.m.21 views

Design/Logic Flaw

Multiple vulnerabilities in IBM DB2 UDB 8 before Fixpak 15 and 9.1 before Fixpak 3 allow local users to create arbitrary files via 1 unspecified vectors where an attacker's umask is honored, 2 /etc/ld.so.preload, 3 certain "cron data file locations", and other unspecified vectors possibly involvi...

1.9CVSS6.7AI score0.00073EPSS
Exploits1References12Affected Software1
Prion
Prionadded 2007/08/18 9:17 p.m.34 views

Directory traversal

Directory traversal vulnerability in IBM DB2 UDB 8 before Fixpak 15 and 9.1 before Fixpak 3 allows local users to create arbitrary files via a .. dot dot in an unspecified environment variable, which is appended to "/tmp/" and used as a log file. NOTE: this issue might be related to symlink...

2.1CVSS6.4AI score0.00055EPSS
Exploits1References10Affected Software1
NVD
NVDadded 2007/08/18 9:17 p.m.20 views

CVE-2007-4270

Multiple race conditions in IBM DB2 UDB 8 before Fixpak 15 and 9.1 before Fixpak 3 allow local users to gain root privileges via a symlink attack on certain files...

6.9CVSS6.3AI score0.00049EPSS
Exploits1References11
Cvelist
Cvelistadded 2007/08/18 9:0 p.m.24 views

CVE-2007-4273

IBM DB2 UDB 8 before Fixpak 15 and 9.1 before Fixpak 3 allows local users to create arbitrary directories and execute arbitrary code via a "crafted localized message file" that enables a format string attack, possibly involving the 1 OSSEMEMDBG or 2 TRCLOGFILE environment variable in db2licd...

6.9AI score0.00088EPSS
Exploits1References11
CVE
CVEadded 2007/08/18 9:0 p.m.61 views

CVE-2007-4275

IBM DB2 UDB 8.x (Fixpak 15) and 9.1 (Fixpak 3) have multiple local privilege-escalation vulnerabilities due to untrusted search paths and environment-based file/binary loading. Exploitable vectors include startup of the DB2 instance or FMP on Linux/Solaris, execution of executables while running ...

6.9CVSS6.5AI score0.00057EPSS
Exploits1References16Affected Software1
Cvelist
Cvelistadded 2007/08/18 9:0 p.m.24 views

CVE-2007-4271

Directory traversal vulnerability in IBM DB2 UDB 8 before Fixpak 15 and 9.1 before Fixpak 3 allows local users to create arbitrary files via a .. dot dot in an unspecified environment variable, which is appended to "/tmp/" and used as a log file. NOTE: this issue might be related to symlink...

6.1AI score0.00055EPSS
Exploits1References10
Rows per page
Query Builder