Lucene search
K

90 matches found

OpenVAS
OpenVAS
added 2008/09/25 12:0 a.m.35 views

IBM Db2 Universal Database Multiple Vulnerabilities (Sep 2008) - Linux

IBM Db2 is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS9.4AI score0.01747EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2008/09/25 12:0 a.m.31 views

IBM DB2 Universal Database Multiple Vulnerabilities - Sept08 (Linux)

The host is running DB2 Database Server, which is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: secpodibmdb28udbmultvulnlin900216.nasl 7174 2017-09-18 11:48:08Z asteins $ Description: IBM DB2 Universal Database Multiple Vulnerabilities - Sept08 Linux Authors: Veerendra GG...

7.5CVSS0.1AI score0.01747EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2008/09/25 12:0 a.m.24 views

IBM Db2 Universal Database Multiple Vulnerabilities (Sep 2008) - Windows

IBM Db2 is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS9.4AI score0.01747EPSS
Exploits0References5
seebug.org
seebug.org
added 2008/09/14 12:0 a.m.19 views

IBM DB2 Universal Database Server 8.2 Fixpak 17之前存在多个漏洞

BUGTRAQ ID: 31058 CNCAN ID:CNCAN-2008091101 IBM DB2是一款大型的商业关系数据库系统, IBM DB2 Universal Database Server 8.2 Fixpak 17之前版本存在多个漏洞,攻击者可以利用漏洞进行如下攻击: -相关CONNECT / ATTACH处理存在远程拒绝服务攻击。 -DB2FMP过程存在未明安全问题。 -DB2JDS存在远程拒绝服务攻击。 -在Windows平台下以系统特权执行DB2FMP过程。 攻击者可以利用这些漏洞进行拒绝服务攻击,也可能造成其他未明攻击行为。 IBM DB2 Universal...

6.9AI score
Exploits0
Prion
Prion
added 2008/09/11 1:13 a.m.26 views

Code injection

Unspecified vulnerability in the JDBC Applet Server Service aka db2jds in IBM DB2 UDB 8 before Fixpak 17 allows remote attackers to cause a denial of service service crash via "malicious packets."...

5CVSS6.9AI score0.01747EPSS
Exploits0References8Affected Software1
CVE
CVE
added 2008/09/09 2:0 p.m.51 views

CVE-2008-3960

IBM DB2 UDB 8 is affected by CVE-2008-3960 in the JDBC Applet Server Service (db2jds) prior to Fixpak 17, enabling remote denial of service via malicious packets. The vulnerability is documented as unspecified in the initial description, with the primary remediation being upgrading to Fixpak 17. ...

5CVSS6.2AI score0.01747EPSS
Exploits0References8Affected Software1
Prion
Prion
added 2008/08/28 5:41 p.m.23 views

Cross site request forgery (csrf)

The Downlevel DB2RA Support component in IBM DB2 9.1 before Fixpak 4a allows remote attackers to cause a denial of service instance crash via a crafted CONNECT data stream that simulates a V7 client connect request...

4.3CVSS6.6AI score0.01855EPSS
Exploits0References5Affected Software1
seebug.org
seebug.org
added 2008/04/17 12:0 a.m.41 views

IBM DB2数据库db2dasrrm缓冲区溢出和文件创建漏洞

BUGTRAQ ID: 27870 CVECAN ID: CVE-2007-5758,CVE-2007-5664 IBM DB2是一个大型的商业关系数据库系统,面向电子商务、商业资讯、内容管理、客户关系管理等应用,可运行于AIX、HP-UX、Linux、Solaris、Windows等系统。...

6.9CVSS6.4AI score0.00567EPSS
Exploits2
seebug.org
seebug.org
added 2008/02/14 12:0 a.m.43 views

IBM DB2 Universal Database DAS缓冲区溢出漏洞

BUGTRAQ ID: 27681 CVECAN ID: CVE-2007-3676 IBM DB2是一个大型的商业关系数据库系统,面向电子商务、商业资讯、内容管理、客户关系管理等应用,可运行于AIX、HP-UX、Linux、Solaris、Windows等系统。 DB2管理服务器(DAS)在处理某些远程管理请求时会使用远程客户端所提供的32位指针值。如果提供了特制的地址值的话,攻击者就可以触发缓冲区溢出,强制程序访问无效的内存地址。 成功攻击允许攻击者导致服务崩溃或执行任意代码。无需认证凭据便可利用这个漏洞,但必须要在TCP 523端口上与DAS创建TCP会话。 IBM DB2...

10CVSS9AI score0.0421EPSS
Exploits1
Prion
Prion
added 2008/02/12 1:0 a.m.26 views

Design/Logic Flaw

Unspecified vulnerability in DB2PD in IBM DB2 UDB before 8.2 Fixpak 16 allows local users to gain root privileges via unspecified vectors...

7.2CVSS6.5AI score0.00304EPSS
Exploits0References4Affected Software1
Prion
Prion
added 2008/02/12 1:0 a.m.29 views

Buffer overflow

Buffer overflow in the DAS server in IBM DB2 UDB before 8.2 Fixpak 16 has unknown attack vectors, and an impact probably involving "invalid memory access."...

7.8CVSS6.9AI score0.01516EPSS
Exploits0References5Affected Software1
Prion
Prion
added 2008/02/12 1:0 a.m.16 views

Authorization

IBM DB2 UDB before 8.2 Fixpak 16 does not properly check authorization for the ALTER TABLE statement, which has unknown impact and attack vectors...

7.5CVSS7AI score0.01164EPSS
Exploits0References4Affected Software1
NVD
NVD
added 2008/02/12 1:0 a.m.18 views

CVE-2008-0696

IBM DB2 UDB before 8.2 Fixpak 16 does not properly check authorization for the ALTER TABLE statement, which has unknown impact and attack vectors...

7.5CVSS6.4AI score0.01164EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2008/02/05 12:0 a.m.17 views

DB2 < 8.1 FixPak 16 Multiple Vulnerabilities (deprecated)

Binary data 4358.prm...

10CVSS7.3AI score0.0421EPSS
Exploits2References8
Prion
Prion
added 2007/11/20 8:46 p.m.15 views

Directory traversal

Unspecified vulnerability in DB2LICD in IBM DB2 UDB 9.1 before Fixpak 4 has unknown impact and attack vectors, related to creation of an "insecure directory."...

7.2CVSS6.6AI score0.0032EPSS
Exploits0References4Affected Software1
Prion
Prion
added 2007/11/20 8:46 p.m.18 views

Design/Logic Flaw

IBM DB2 UDB 9.1 before Fixpak 4 assigns incorrect privileges to the 1 DB2ADMNS and 2 DB2USERS alternative groups, which has unknown impact. NOTE: the vendor description of this issue is too vague to be certain that it is security-related...

10CVSS6.5AI score0.01541EPSS
Exploits0References5Affected Software1
Prion
Prion
added 2007/11/20 8:46 p.m.14 views

Memory corruption

IBM DB2 UDB 9.1 before Fixpak 4 does not properly handle use of large numbers of file descriptors, which might allow attackers to have an unknown impact involving "memory corruption." NOTE: the vendor description of this issue is too vague to be certain that it is security-related...

9.3CVSS6.5AI score0.01272EPSS
Exploits0References4Affected Software1
Prion
Prion
added 2007/11/20 8:46 p.m.25 views

Buffer overflow

IBM DB2 UDB 9.1 before Fixpak 4 does not properly perform vector aggregation, which might allow attackers to cause a denial of service divide-by-zero error and DBMS crash, related to an "overflow." NOTE: the vendor description of this issue is too vague to be certain that it is security-related...

7.8CVSS6.5AI score0.01309EPSS
Exploits0References4Affected Software1
NVD
NVD
added 2007/11/20 8:46 p.m.17 views

CVE-2007-6045

Unspecified vulnerability in 1 DB2WATCH and 2 DB2FREEZE in IBM DB2 UDB 9.1 before Fixpak 4 has unknown impact and attack vectors...

10CVSS6.4AI score0.01826EPSS
Exploits0References7
NVD
NVD
added 2007/11/20 8:46 p.m.20 views

CVE-2007-6053

IBM DB2 UDB 9.1 before Fixpak 4 does not properly handle use of large numbers of file descriptors, which might allow attackers to have an unknown impact involving "memory corruption." NOTE: the vendor description of this issue is too vague to be certain that it is security-related...

9.3CVSS6.3AI score0.01272EPSS
Exploits0References4
Rows per page
Query Builder