7 matches found
EUVD-2012-2188
Malware in sbrugna...
Security Bulletin: IBM DB2 Security Vulnerability in SQLJ.DB2_INSTALL_JAR (CVE-2012-2194).
Abstract Vulnerability in IBM DB2 could allow an authenticated user, without proper authorization, to overwrite JAR files. Content VULNERABILITY DETAILS CVE ID: CVE-2012-2194 DESCRIPTION: The IBM DB2 products listed below contain a security vulnerability that could allow an authenticated user,...
IBM DB2 9.5 < Fix Pack 10 Multiple Vulnerabilities
According to its version, the installation of IBM DB2 9.5 running on the remote host is affected by one or more of the following issues : - An unspecified information disclosure error exists related to the XML feature that can allow improper access to arbitrary XML files. IC81461, CVE-2012-0713 -...
CVE-2012-2194
Directory traversal vulnerability in the SQLJ.DB2INSTALLJAR stored procedure in IBM DB2 9.1 before FP12, 9.5 through FP9, 9.7 through FP6, 9.8 through FP5, and 10.1 allows remote attackers to replace JAR files via unspecified vectors...
Directory traversal
Directory traversal vulnerability in the SQLJ.DB2INSTALLJAR stored procedure in IBM DB2 9.1 before FP12, 9.5 through FP9, 9.7 through FP6, 9.8 through FP5, and 10.1 allows remote attackers to replace JAR files via unspecified vectors...
CVE-2012-2194
Directory traversal vulnerability in the SQLJ.DB2INSTALLJAR stored procedure in IBM DB2 9.1 before FP12, 9.5 through FP9, 9.7 through FP6, 9.8 through FP5, and 10.1 allows remote attackers to replace JAR files via unspecified vectors...
IBM DB2 9.1 < Fix Pack 12 Multiple Vulnerabilities
According to its version, the installation of IBM DB2 9.1 running on the remote host is affected by one or more of the following issues : - An integer signedness error exists in the 'db2asrrm' process that can lead to a heap-based buffer overflow. Note that this issue does not affect Windows host...