CVSS: 10.0EPSS: 0%CPEs: 7EXPL: 0CVE-2005-0417
https://notcve.org/view.php?id=CVE-2005-0417
Unknown "high risk" vulnerability in DB2 Universal Database 8.1 and earlier has unknown impact and attack vectors. NOTE: due to the delayed disclosure of details for this issue, this candidate may be SPLIT in the future. In addition, this may be a duplicate of other issues as reported by the vendor. Vulnerabilidad desconocida de "alto riesgo" en DB2 Universal Database 8.1 y anteriores con impacto y vectores de ataque desconocidos. • http://marc.info/?l=bugtraq&m=110801212422825&w=2 http://www.ngssoftware.com/advisories/db2-09-05-05.htm http://www.securityfocus.com/bid/12508 •
CVSS: 7.2EPSS: 0%CPEs: 4EXPL: 0CVE-2004-1372
https://notcve.org/view.php?id=CVE-2004-1372
Multiple stack-based buffer overflows in IBM DB2 7.x and 8.1 allow local users to execute arbitrary code via (1) a long third argument to the rec2xml function or (2) a long filename argument to the generate_distfile procedure. • http://marc.info/?l=bugtraq&m=110382462924162&w=2 http://marc.info/?l=bugtraq&m=110382730431065&w=2 http://www.ngssoftware.com/advisories/db223122004K.txt http://www.ngssoftware.com/advisories/db223122004L.txt http://www.securityfocus.com/bid/11089 https://exchange.xforce.ibmcloud.com/vulnerabilities/18663 https://exchange.xforce.ibmcloud.com/vulnerabilities/18682 •
CVSS: 7.2EPSS: 0%CPEs: 8EXPL: 3CVE-2003-1052 – IBM DB2 - Shared Library Injection
https://notcve.org/view.php?id=CVE-2003-1052
IBM DB2 7.1 and 8.1 allow the bin user to gain root privileges by modifying the shared libraries that are used in setuid root programs. IBM DB2 7.1 y 8.1 permite al usuario bin ganar privilegios de root modificando las librerías compartidas usadas por programas con setuid de root. • https://www.exploit-db.com/exploits/22989 http://www.securityfocus.com/archive/1/331904 http://www.securityfocus.com/bid/8346 https://exchange.xforce.ibmcloud.com/vulnerabilities/12826 •
CVSS: 4.6EPSS: 0%CPEs: 2EXPL: 0CVE-2003-1049
https://notcve.org/view.php?id=CVE-2003-1049
IBM DB2 Universal Database 7 before FixPak 12 creates certain DMS directories with insecure permissions (777), which allows local users to modify or delete certain DB2 files. IBM DB2 Universal Database 7 antes de FixPak 12 crea ciertos directorios DMS con permisos inseguros (777), lo que permite a usuarios locales modificar o borrar ciertos ficheros DB2. • http://www-1.ibm.com/support/search.wss?rs=0&q=IY44841&apar=only http://www-1.ibm.com/support/search.wss?rs=0&q=IY44842&apar=only http://www.securityfocus.com/bid/9243 https://exchange.xforce.ibmcloud.com/vulnerabilities/14030 •
CVSS: 7.2EPSS: 1%CPEs: 1EXPL: 0CVE-2004-0795 – IBM DB2 Db2rcmd.exe Command Execution
https://notcve.org/view.php?id=CVE-2004-0795
DB2 8.1 remote command server (DB2RCMD.EXE) executes the db2rcmdc.exe program as the db2admin administrator, which allows local users to gain privileges via the DB2REMOTECMD named pipe. El servidor de órdenes remoto de DB2 8.1 (DB2RCMD.EXE) ejecuta el programa db2rcmdc.exe como el adminstrador db2admin, lo que permite a usuarios locales ganar privilegios mediante la tubería con nombre DB2REMOTECMD. • http://marc.info/?l=bugtraq&m=107885081414173&w=2 http://www-1.ibm.com/support/docview.wss?uid=swg1IY53894 http://www.nextgenss.com/advisories/db2rmtcmd.txt http://www.securityfocus.com/bid/9821 https://exchange.xforce.ibmcloud.com/vulnerabilities/15420 •