Db2 Universal Database Security Vulnerabilities and Issues — Db2 Universal Database CVE List

Lucene search

IbmDb2 Universal Database

4 matches found

CVE•added 2004/09/28 4:0 a.m.•50 views

CVE-2003-1049

IBM DB2 Universal Database 7 before FixPak 12 creates certain DMS directories with insecure permissions (777), which allows local users to modify or delete certain DB2 files.

4.6CVSS6.5AI score0.00051EPSS

CVE•added 2004/10/20 4:0 a.m.•40 views

CVE-2004-0795

DB2 8.1 remote command server (DB2RCMD.EXE) executes the db2rcmdc.exe program as the db2admin administrator, which allows local users to gain privileges via the DB2REMOTECMD named pipe.

7.2CVSS7.2AI score0.31914EPSS

CVE•added 2004/09/28 4:0 a.m.•39 views

CVE-2002-1583

Buffer overflow in sqllib/security/db2ckpw for IBM DB2 Universal Database 6.0 and 7.0 allows local users to execute arbitrary code via a long username that is read from a file descriptor argument.

7.2CVSS7.6AI score0.00061EPSS

CVE•added 2004/09/28 4:0 a.m.•38 views

CVE-2003-1052

IBM DB2 7.1 and 8.1 allow the bin user to gain root privileges by modifying the shared libraries that are used in setuid root programs.

7.2CVSS7AI score0.00373EPSS