Db2@9.5 Security Vulnerabilities and Issues — Db2@9.5 CVE List

Lucene search

IbmDb29.5

4 matches found

CVE•added 2011/02/01 6:0 p.m.•61 views

CVE-2011-0731

Buffer overflow in the DB2 Administration Server (DAS) component in IBM DB2 9.1 before FP10, 9.5 before FP7, and 9.7 before FP3 on Linux, UNIX, and Windows allows remote attackers to execute arbitrary code via unspecified vectors.

7.5CVSS9.6AI score0.07896EPSS

CVE•added 2011/02/02 11:0 p.m.•53 views

CVE-2011-0757

IBM DB2 9.1 before FP10, 9.5 before FP6a, and 9.7 before FP2 on Linux, UNIX, and Windows does not properly revoke the DBADM authority, which allows remote authenticated users to execute non-DDL statements by leveraging previous possession of this authority.

6.5CVSS8.9AI score0.01049EPSS

CVE•added 2011/05/03 8:55 p.m.•53 views

CVE-2011-1847

IBM DB2 9.5 before FP7 and 9.7 before FP4 on Linux, UNIX, and Windows does not properly enforce privilege requirements for table access, which allows remote authenticated users to modify SYSSTAT.TABLES statistics columns via an UPDATE statement. NOTE: some of these details are obtained from third p...

4.9CVSS8.8AI score0.01241EPSS

CVE•added 2011/05/03 8:55 p.m.•42 views

CVE-2011-1846

IBM DB2 9.5 before FP7 and 9.7 before FP4 on Linux, UNIX, and Windows does not properly revoke role membership from groups, which allows remote authenticated users to execute non-DDL statements by leveraging previous inherited possession of a role, a different vulnerability than CVE-2011-0757. NOTE...

6.5CVSS8.9AI score0.01326EPSS