CVSS: 7.2EPSS: 0%CPEs: 8EXPL: 3CVE-2003-1052 – IBM DB2 - Shared Library Injection
https://notcve.org/view.php?id=CVE-2003-1052
IBM DB2 7.1 and 8.1 allow the bin user to gain root privileges by modifying the shared libraries that are used in setuid root programs. IBM DB2 7.1 y 8.1 permite al usuario bin ganar privilegios de root modificando las librerías compartidas usadas por programas con setuid de root. • https://www.exploit-db.com/exploits/22989 http://www.securityfocus.com/archive/1/331904 http://www.securityfocus.com/bid/8346 https://exchange.xforce.ibmcloud.com/vulnerabilities/12826 •
CVSS: 4.6EPSS: 0%CPEs: 2EXPL: 0CVE-2003-1049
https://notcve.org/view.php?id=CVE-2003-1049
IBM DB2 Universal Database 7 before FixPak 12 creates certain DMS directories with insecure permissions (777), which allows local users to modify or delete certain DB2 files. IBM DB2 Universal Database 7 antes de FixPak 12 crea ciertos directorios DMS con permisos inseguros (777), lo que permite a usuarios locales modificar o borrar ciertos ficheros DB2. • http://www-1.ibm.com/support/search.wss?rs=0&q=IY44841&apar=only http://www-1.ibm.com/support/search.wss?rs=0&q=IY44842&apar=only http://www.securityfocus.com/bid/9243 https://exchange.xforce.ibmcloud.com/vulnerabilities/14030 •
CVSS: 4.6EPSS: 0%CPEs: 2EXPL: 1CVE-2003-0898 – IBM DB2 db2job - File Overwrite
https://notcve.org/view.php?id=CVE-2003-0898
IBM DB2 7.2 before FixPak 10a, and earlier versions including 7.1, allows local users to overwrite arbitrary files and gain privileges via a symlink attack on (1) db2job and (2) db2job2. IBM DB2 anteriores a FixPak 10a, y versiones anteriores incluyendo la 7.1, permite a usuarios locales sobreescribir ficheros arbitrarios y ganar privilegios mediante un ataque de enlaces simbólicos sobre d2job o db2job2. • https://www.exploit-db.com/exploits/22988 ftp://ftp.software.ibm.com/ps/products/db2/fixes/english-us/db2aixv7/FP10a_U495172/FixpakReadme.txt http://marc.info/?l=bugtraq&m=106010332721672&w=2 •
CVSS: 5.0EPSS: 0%CPEs: 2EXPL: 0CVE-2003-0827
https://notcve.org/view.php?id=CVE-2003-0827
The DB2 Discovery Service for IBM DB2 before FixPak 10a allows remote attackers to cause a denial of service (crash) via a long packet to UDP port 523. El servicio de descubierta DB2 de IBM DB2 anteriores a FixPak 10a permite a atacantes remotos causar una denegación de servicio (caída) mediante una paquete largo al puerto UDP 523. • http://marc.info/?l=bugtraq&m=106399616919636&w=2 http://www-1.ibm.com/support/search.wss?rs=0&q=IY47686&apar=only •
CVSS: 2.1EPSS: 0%CPEs: 2EXPL: 3CVE-2001-0052 – IBM DB2 - Universal Database for Windows NT 6.1/7.1 SQL Denial of Service
https://notcve.org/view.php?id=CVE-2001-0052
IBM DB2 Universal Database version 6.1 allows users to cause a denial of service via a malformed query. • https://www.exploit-db.com/exploits/20470 http://www.securityfocus.com/archive/1/149207 http://www.securityfocus.com/bid/2067 https://exchange.xforce.ibmcloud.com/vulnerabilities/5664 •