Page 7 of 49 results (0.003 seconds)

CVSS: 7.2EPSS: 0%CPEs: 16EXPL: 0

Stack-based buffer overflow in db2fmp in IBM DB2 7.x and 8.1 allows local users to execute arbitrary code via a long parameter. • http://marc.info/?l=bugtraq&m=110494995113579&w=2 http://secunia.com/advisories/12733 http://www-1.ibm.com/support/docview.wss?uid=swg21181228 http://www-1.ibm.com/support/search.wss?rs=0&q=IY62039&apar=only http://www.nextgenss.com/advisories/db205012005A.txt http://www.securityfocus.com/bid/11397 https://exchange.xforce.ibmcloud.com/vulnerabilities/17615 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •

CVSS: 6.5EPSS: 0%CPEs: 12EXPL: 0

IBM DB2 Universal Database (UDB) 810 before ESE AIX 5765F4100 does not ensure that a user has execute privileges before permitting object creation based on routines, which allows remote authenticated users to gain privileges. • http://secunia.com/advisories/17031 http://www-1.ibm.com/support/docview.wss?uid=swg1IY71865 http://www.securityfocus.com/bid/15126 •

CVSS: 7.5EPSS: 0%CPEs: 12EXPL: 0

IBM DB2 Universal Database (UDB) 820 before ESE AIX 5765F4100 allows remote authenticated users to cause a denial of service (CPU consumption) by "abnormally" terminating a connection, which prevents db2agents from being properly cleared. • http://secunia.com/advisories/17031 http://www-1.ibm.com/support/docview.wss?uid=swg1IY71587 http://www.securityfocus.com/bid/15126 •

CVSS: 6.8EPSS: 0%CPEs: 12EXPL: 0

IBM DB2 Universal Database (UDB) 820 before version 8 FixPak 10 (s050811) allows remote authenticated users to cause a denial of service (application crash) by using a table function for an instance of snapshot_tbreorg, which triggers a trap in sqlnr_EStoE_action. • http://secunia.com/advisories/17031 http://www-1.ibm.com/support/docview.wss?uid=swg1IY72588 http://www.securityfocus.com/bid/15126 •

CVSS: 7.1EPSS: 0%CPEs: 5EXPL: 1

Shared memory sections and events in IBM DB2 8.1 have default permissions of read and write for the Everyone group, which allows local users to gain unauthorized access, gain sensitive information, such as cleartext passwords, and cause a denial of service. • https://www.exploit-db.com/exploits/24678 http://marc.info/?l=bugtraq&m=110495402231836&w=2 http://secunia.com/advisories/12733 http://www-1.ibm.com/support/docview.wss?uid=swg21181228 http://www.nextgenss.com/advisories/db205012005F.txt http://www.securityfocus.com/bid/11402 https://exchange.xforce.ibmcloud.com/vulnerabilities/17605 • CWE-732: Incorrect Permission Assignment for Critical Resource •