Db2 Universal Database@* Security Vulnerabilities and Issues — Db2 Universal Database@* CVE List

Lucene search

IbmDb2 Universal Database*

4 matches found

CVE•added 2008/02/13 12:0 a.m.•56 views

CVE-2007-5757

Untrusted search path vulnerability in db2pd in IBM DB2 Universal Database (UDB) 8 before FixPak 16 and 9 before Fix Pack 4 allows local users to gain root privileges via a modified DB2INSTANCE environment variable that points to a malicious library. NOTE: this might be the same issue as CVE-2008-0...

6.9CVSS6.1AI score0.00058EPSS

CVE•added 2008/08/28 5:41 p.m.•44 views

CVE-2008-3852

Unspecified vulnerability in the CLR stored procedure deployment from IBM Database Add-Ins for Visual Studio in the Visual Studio Net component in IBM DB2 9.1 before Fixpak 5 and 9.5 before Fixpak 2 allows remote authenticated users to execute arbitrary code via unknown vectors.

6.5CVSS6.8AI score0.03183EPSS

CVE•added 2008/09/11 1:13 a.m.•39 views

CVE-2008-3960

Unspecified vulnerability in the JDBC Applet Server Service (aka db2jds) in IBM DB2 UDB 8 before Fixpak 17 allows remote attackers to cause a denial of service (service crash) via "malicious packets."

5CVSS6.2AI score0.01419EPSS

CVE•added 2008/08/28 5:41 p.m.•37 views

CVE-2008-3856

The routine infrastructure component in IBM DB2 8 before FP17, 9.1 before FP5, and 9.5 before FP1 on Unix and Linux does not change the ownership of the db2fmp process, which has unknown impact and attack vectors.

7.5CVSS6.1AI score0.00833EPSS