Db2 Security Vulnerabilities and Issues — Db2 CVE List

Lucene search

IbmDb2

5 matches found

CVE•added 2008/02/13 12:0 a.m.•59 views

CVE-2007-3676

IBM DB2 Universal Database (UDB) Administration Server (DAS) 8 before Fix Pack 16 and 9 before Fix Pack 4 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via modified pointer values in unspecified remote administration requests, which triggers memory...

10CVSS9.7AI score0.04548EPSS

CVE•added 2008/02/12 1:0 a.m.•45 views

CVE-2008-0698

Buffer overflow in the DAS server in IBM DB2 UDB before 8.2 Fixpak 16 has unknown attack vectors, and an impact probably involving "invalid memory access."

7.8CVSS6.6AI score0.00532EPSS

CVE•added 2008/02/12 1:0 a.m.•44 views

CVE-2008-0697

Unspecified vulnerability in DB2PD in IBM DB2 UDB before 8.2 Fixpak 16 allows local users to gain root privileges via unspecified vectors.

7.2CVSS6.3AI score0.00048EPSS

CVE•added 2008/02/12 1:0 a.m.•38 views

CVE-2008-0699

Unspecified vulnerability in the ADMIN_SP_C procedure (SYSPROC.ADMIN_SP_C) in IBM DB2 UDB before 8.2 Fixpak 16, 9.1 before FP4a, and 9.5 before FP1 allows remote authenticated users to execute arbitrary code via unspecified attack vectors.

9CVSS7AI score0.08004EPSS

CVE•added 2008/02/12 1:0 a.m.•30 views

CVE-2008-0696

IBM DB2 UDB before 8.2 Fixpak 16 does not properly check authorization for the ALTER TABLE statement, which has unknown impact and attack vectors.

7.5CVSS6.4AI score0.00401EPSS