2 matches found
CVE-2017-1297
CVE-2017-1297 affects IBM DB2 for Linux/UNIX/Windows (including DB2 Connect Server). The vulnerability is a stack-based buffer overflow caused by improper bounds checking in the CLP path, which could allow a local attacker to execute arbitrary code. In affected IBM DB2 LUW releases (notably 9.2/1...
CVE-2017-1105
IBM DB2 LUW (on Linux/UNIX/Windows, including DB2 Connect Server) is affected by a local buffer overflow (CVE-2017-1105) across multiple tracked releases (9.2, 10.1, 10.5, 11.1). The issue could allow a local user to overwrite DB2 files or cause a denial of service; impact is described as affecte...