Db2 Universal Database@8 Security Vulnerabilities and Issues — Db2 Universal Database@8 CVE List

Lucene search

IbmDb2 Universal Database8

3 matches found

CVE•added 2008/04/16 6:5 p.m.•50 views

CVE-2007-5664

db2dasrrm in the DB2 Administration Server (DAS) in IBM DB2 Universal Database 9.5 before Fix Pack 1, 9.1 before Fix Pack 4a, and 8 before FixPak 16 allows local users to overwrite arbitrary files via a symlink attack on files used for initialization.

6.9CVSS6AI score0.00027EPSS

CVE•added 2008/04/16 6:5 p.m.•40 views

CVE-2007-5758

Stack-based buffer overflow in db2dasrrm in the DB2 Administration Server (DAS) in IBM DB2 Universal Database 9.5 before Fix Pack 1, 9.1 before Fix Pack 4a, and 8 before FixPak 16 allows local users to execute arbitrary code via a long DASPROF environment variable.

6.9CVSS7.4AI score0.00074EPSS

CVE•added 2008/08/28 5:41 p.m.•37 views

CVE-2008-3856

The routine infrastructure component in IBM DB2 8 before FP17, 9.1 before FP5, and 9.5 before FP1 on Unix and Linux does not change the ownership of the db2fmp process, which has unknown impact and attack vectors.

7.5CVSS6.1AI score0.00833EPSS