EUVD-2003-1039

Malware in sbrugna...

EUVD-2005-0418

Malware in sbrugna...

EUVD-2005-4728

Malware in sbrugna...

EUVD-2005-4730

Malware in sbrugna...

CVE-2005-4738

IBM DB2 Universal Database UDB 810 before ESE AIX 5765F4100 does not ensure that a user has execute privileges before permitting object creation based on routines, which allows remote authenticated users to gain privileges...

CVE-2005-4735

IBM DB2 Universal Database UDB 810 before 8.1 FP10 allows remote authenticated users to cause a denial of service application crash via 1 certain equality predicates that trigger self-removal, aka IY70808; and 2 a query with more than 32000 elements in the IN-list, aka LI70817...

IBM DB2 Db2rcmd.exe Command Execution

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'IBM DB2 db2rcmd.exe Command Execution Vulnerability', 'Description' = %q This module exploits a vulnerability in the Remote Command Server...

IBM DB2 Universal Database for Windows NT 6.1/7.1 SQL DoS Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/2067/info IBM DB2 Universal Database is a distributed database application. It may be possible for a database user to crash the server through a bug in handling certain queries. If a certain query is executed that contain...

IBM DB2 9.5 Fix Pack 5之前多个未明安全漏洞

Bugraq ID: 37332 IBM DB2 Universal Database Server是一款大型的商业关系数据库系统。 IBM DB2存在多个未明安全漏洞。目前没有详细漏洞细节提供。 IBM DB2 Universal Database 9.5 Fixpak 4 IBM DB2 Universal Database 9.5 Fixpak 2 IBM DB2 Universal Database 9.5 Fix Pack 3a IBM DB2 Universal Database 9.5 Fix Pack 1 IBM DB2 Universal Database 9.5...

IBM DB2 Universal Database Multiple SQL Functions Remote Code Execution Vulnerabilities

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of IBM DB2. Authentication is required to exploit this vulnerability. The specific flaw exists in the parsing of VARCHAR arguments to a number of stored procedures available by default on DB2...

IBM DB2 Universal Database XML Query Buffer Overflow (CVE-2008-3854)

IBM DB2 Database is a relational database management system made available for Unix, Windows, and Linux platforms. The product consists of a set of services that work together to provide data processing functionalities. DB2 can be administrated from command-line tools or GUI tools. IBM DB2 runs...

IBM DB2 Universal Database Multiple Vulnerabilities - Sept08 (Linux)

The host is running DB2 Database Server, which is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: secpodibmdb28udbmultvulnlin900216.nasl 7174 2017-09-18 11:48:08Z asteins $ Description: IBM DB2 Universal Database Multiple Vulnerabilities - Sept08 Linux Authors: Veerendra GG...

IBM Db2 Universal Database Multiple Vulnerabilities (Sep 2008) - Windows

IBM Db2 is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2007-5664

DB2 DB2 Administration Server (DAS) component db2dasrrm is vulnerable to a local, symlink-based file-overwrite during initialization. Affected versions are IBM DB2 Universal Database: 9.5 before Fix Pack 1, 9.1 before Fix Pack 4a, and 8 before FixPak 16. The underlying issue allows a local user t...

IBM DB2 Universal Database DAS缓冲区溢出漏洞

BUGTRAQ ID: 27681 CVECAN ID: CVE-2007-3676 IBM DB2是一个大型的商业关系数据库系统，面向电子商务、商业资讯、内容管理、客户关系管理等应用，可运行于AIX、HP-UX、Linux、Solaris、Windows等系统。 DB2管理服务器（DAS）在处理某些远程管理请求时会使用远程客户端所提供的32位指针值。如果提供了特制的地址值的话，攻击者就可以触发缓冲区溢出，强制程序访问无效的内存地址。 成功攻击允许攻击者导致服务崩溃或执行任意代码。无需认证凭据便可利用这个漏洞，但必须要在TCP 523端口上与DAS创建TCP会话。 IBM DB2...

iDefense Security Advisory 02.07.08: IBM DB2 Universal Database db2pd Arbitrary Library Loading Vulnerability

iDefense Security Advisory 02.07.08 http://labs.idefense.com/intelligence/vulnerabilities/ Feb 07, 2008 I. BACKGROUND IBM Corp.'s DB2 Universal Database product is a large database server product commonly used for high end databases. For more information, visit the following URL...

IBM DB2多个特权提升漏洞

IBM DB2 Universal Database是一款商业性质的数据库系统。 IBM DB2 Universal Database存在多个安全问题，远程和本地攻击者可以利用漏洞提升特权。 目前没有详细漏洞细节提供。 IBM DB2 Universal Database for Windows 9.1 FixPak 3 IBM DB2 Universal Database for Windows 9.1 FixPack 2 IBM DB2 Universal Database for Windows 9.1 IBM DB2 Universal Database for Solaris...

IBM DB2 Universal Database多个本地安全漏洞

BUGTRAQ ID: 25339 CVECAN ID: CVE-2007-4270,CVE-2007-4271,CVE-2007-4272,CVE-2007-4273,CVE-2007-4275,CVE-2007-4276 IBM DB2是一个大型的商业关系数据库系统，面向电子商务、商业资讯、内容管理、客户关系管理等应用，可运行于AIX、HP-UX、Linux、Solaris、Windows等系统。 IBM DB2的多个工具实现上存在漏洞，本地攻击者可能利用这些漏洞提升自己的权限。 IBM...

iDefense Security Advisory 08.16.07: IBM DB2 Universal Database Multiple File Creation Vulnerabilities

IBM DB2 Universal Database Multiple File Creation Vulnerabilities iDefense Security Advisory 08.16.07 http://labs.idefense.com/intelligence/vulnerabilities/ Aug 16, 2007 I. BACKGROUND IBM Corp.'s DB2 Universal Database product is a large database server product commonly used for high end database...

iDefense Security Advisory 02.22.07: IBM DB2 Universal Database Multiple Privilege Escalation Vulnerabilities

IBM DB2 Universal Database Multiple Privilege Escalation Vulnerabilities iDefense Security Advisory 02.22.07 http://labs.idefense.com/intelligence/vulnerabilities/ Feb 22, 2007 I. BACKGROUND IBM Corp.'s DB2 Universal Database product is a large database server product commonly used for higher end...