CVE-2018-1566
https://notcve.org/view.php?id=CVE-2018-1566
IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, and 11.1 could allow a local user to execute arbitrary code due to a format string error. IBM X-Force ID: 143023. IBM DB2 para Linux, UNIX y Windows 9.7, 10.1, 10.5 y 11.1 (incluido DB2 Connect Server) podría permitir a un usuario local ejecutar código arbitrario debido a un error de cadena de formato. IBM X-Force ID: 143023. • http://www.ibm.com/support/docview.wss?uid=swg22016182 http://www.securityfocus.com/bid/104740 http://www.securitytracker.com/id/1041229 https://exchange.xforce.ibmcloud.com/vulnerabilities/143023 • CWE-134: Use of Externally-Controlled Format String •
CVE-2018-1450
https://notcve.org/view.php?id=CVE-2018-1450
IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, and 11.1 contains a vulnerability that could allow a local user to overwrite arbitrary files owned by the DB2 instance owner. IBM X-Force ID: 140045. IBM DB2 para Linux, UNIX y Windows 9.7, 10.1, 10.5 y 11.1 (incluido DB2 Connect Server) contiene una vulnerabilidad que podría permitir a un usuario local sobrescribir archivos arbitrarios pertenecientes al propietario de la instancia del DB2. IBM X-Force ID: 140045. • http://www.ibm.com/support/docview.wss?uid=swg22016181 http://www.securitytracker.com/id/1041004 https://exchange.xforce.ibmcloud.com/vulnerabilities/140045 •
CVE-2018-1515
https://notcve.org/view.php?id=CVE-2018-1515
IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 10.5 and 11.1, under specific or unusual conditions, could allow a local user to overflow a buffer which may result in a privilege escalation to the DB2 instance owner. IBM X-Force ID: 141624. IBM DB2 para Linux, UNIX y Windows 10.5 y 11.1 (incluido DB2 Connect Server) en condiciones específicas o inusuales, podría permitir que un usuario local desborde un búfer, lo que puede resultar en un escalado de privilegios al propietario de la instancia DB2. IBM X-Force ID: 141624. • http://www.ibm.com/support/docview.wss?uid=swg22016140 http://www.securitytracker.com/id/1040969 https://exchange.xforce.ibmcloud.com/vulnerabilities/141624 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVE-2018-1565
https://notcve.org/view.php?id=CVE-2018-1565
IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, and 11.1 could allow a local user to overflow a buffer which may result in a privilege escalation to the DB2 instance owner. IBM X-Force ID: 143022. IBM DB2 para Linux, UNIX y Windows 9.7, 10.1, 10.5 y 11.1 (incluido DB2 Connect Server) podría permitir que un usuario local desborde un búfer, lo que puede resultar en un escalado de privilegios al propietario de la instancia DB2. IBM X-Force ID: 143022. • http://www.ibm.com/support/docview.wss?uid=swg22016143 http://www.securitytracker.com/id/1040967 https://exchange.xforce.ibmcloud.com/vulnerabilities/143022 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVE-2018-1459
https://notcve.org/view.php?id=CVE-2018-1459
IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, and 11.1 is vulnerable to stack based buffer overflow, caused by improper bounds checking which could lead an attacker to execute arbitrary code. IBM X-Force ID: 140210. IBM DB2 para Linux, UNIX y Windows 9.7, 10.1, 10.5 y 11.1 (incluido DB2 Connect Server) es vulnerable a un desbordamiento de búfer basado en pila provocado por una comprobación de límites incorrecta que podría conducir a que un atacante ejecute código arbitrario. IBM X-Force ID: 140210. • http://www.ibm.com/support/docview.wss?uid=swg22016142 http://www.securitytracker.com/id/1041005 https://exchange.xforce.ibmcloud.com/vulnerabilities/140210 • CWE-787: Out-of-bounds Write •