Inicial ▼ Bookkeeping
Online ▼ Auditorias ▼
DNS
Administrado ▼
Acerca de DNS
Ordenar/Renovar
Preguntas Frecuentes
AUP
Dynamic DNS Clients
Configurar Dominios Dynamic DNS Update Password Monitoreo
de Redes ▼
Enterprise
Avanzado
Estándarr
Prueba
Preguntas Frecuentes
Resumen de Precio/Funciones
Ordenar
Muestras
Configure/Status Alert Profiles | |||
ID de Prueba: | 1.3.6.1.4.1.25623.1.0.901082 |
Categoría: | Databases |
Título: | IBM Db2 UDB Multiple Unspecified Vulnerabilities (Windows) |
Resumen: | IBM Db2 is prone to multiple vulnerabilities. |
Descripción: | Summary: IBM Db2 is prone to multiple vulnerabilities. Vulnerability Insight: The flaws are due to: - An unspecified error in the Engine Utilities component, causes segmentation fault by modifying the db2ra data stream sent in a request from the load utility. - An unspecified error in 'db2licm' within the Engine Utilities component it has unknown impact and local attack vectors. - An unspecified error in the DRDA Services componenta, causes the server trap by calling a SQL stored procedure in unknown circumstances. - An error in relational data services component, allows attackers to obtain the password argument from the SET ENCRYPTION PASSWORD statement via vectors involving the GET SNAPSHOT FOR DYNAMIC SQL command. - Multiple unspecified errors in bundled stored procedures in the Spatial Extender component, have unknown impact and remote attack vectors. - An unspecified vulnerability in the Query Compiler, Rewrite, and Optimizer component, allows to cause a denial of service (instance crash) by compiling a SQL query. Vulnerability Impact: Successful exploitation will allow attacker to bypass security restrictions, cause a denial of service. Affected Software/OS: IBM Db2 version 9.5 prior to Fixpack 5. Solution: Update IBM Db2 9.5 Fixpack 5 or later. CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C |
Referencia Cruzada: |
BugTraq ID: 37332 Common Vulnerability Exposure (CVE) ID: CVE-2009-4328 AIX APAR: IC64298 http://www-01.ibm.com/support/docview.wss?uid=swg1IC64298 http://www.securityfocus.com/bid/37332 http://secunia.com/advisories/37759 http://www.vupen.com/english/advisories/2009/3520 Common Vulnerability Exposure (CVE) ID: CVE-2009-4329 AIX APAR: IZ52083 http://www-01.ibm.com/support/docview.wss?uid=swg1IZ52083 Common Vulnerability Exposure (CVE) ID: CVE-2009-4330 AIX APAR: IC62501 http://www-01.ibm.com/support/docview.wss?uid=swg1IC62501 Common Vulnerability Exposure (CVE) ID: CVE-2009-4333 AIX APAR: IZ38819 http://www-01.ibm.com/support/docview.wss?uid=swg1IZ38819 Common Vulnerability Exposure (CVE) ID: CVE-2009-4335 AIX APAR: IC62625 http://www-01.ibm.com/support/docview.wss?uid=swg1IC62625 XForce ISS Database: ibm-db2-spatial-unspecified(55007) https://exchange.xforce.ibmcloud.com/vulnerabilities/55007 Common Vulnerability Exposure (CVE) ID: CVE-2009-4439 AIX APAR: JR31948 http://www-01.ibm.com/support/docview.wss?uid=swg1JR31948 |
Copyright | Copyright (C) 2009 Greenbone Networks GmbH |
Esta es sólo una de 99761 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora. |