Búsqueda de    
Vulnerabilidad   
    Buscar 219043 Descripciones CVE y
99761 Descripciones de Pruebas,
accesos 10,000+ referencias cruzadas.
Pruebas   CVE   Todos  

ID de Prueba:1.3.6.1.4.1.25623.1.0.901083
Categoría:Databases
Título:IBM Db2 UDB Multiple Unspecified Vulnerabilities (Linux)
Resumen:IBM Db2 is prone to multiple vulnerabilities.
Descripción:Summary:
IBM Db2 is prone to multiple vulnerabilities.

Vulnerability Insight:
The flaws are due to:

- An unspecified error in the Engine Utilities component, causes segmentation
fault by modifying the db2ra data stream sent in a request from the load utility.

- An unspecified error in 'db2licm' within the Engine Utilities component it
has unknown impact and local attack vectors.

- An unspecified error in the DRDA Services componenta, causes the server trap
by calling a SQL stored procedure in unknown circumstances.

- An error in relational data services component, allows attackers to obtain
the password argument from the SET ENCRYPTION PASSWORD statement via vectors
involving the GET SNAPSHOT FOR DYNAMIC SQL command.

- Multiple unspecified errors in bundled stored procedures in the Spatial
Extender component, have unknown impact and remote attack vectors.

- An unspecified vulnerability in the Query Compiler, Rewrite, and Optimizer
component, allows to cause a denial of service (instance crash) by compiling a SQL query

Vulnerability Impact:
Successful exploitation will allow attacker to bypass security restrictions,
cause a denial of service.

Affected Software/OS:
IBM DB2 version 9.5 prior to Fixpack 5.

Solution:
Update IBM Db2 9.5 Fixpack 5.

CVSS Score:
10.0

CVSS Vector:
AV:N/AC:L/Au:N/C:C/I:C/A:C

Referencia Cruzada: BugTraq ID: 37332
Common Vulnerability Exposure (CVE) ID: CVE-2009-4328
AIX APAR: IC64298
http://www-01.ibm.com/support/docview.wss?uid=swg1IC64298
http://www.securityfocus.com/bid/37332
http://secunia.com/advisories/37759
http://www.vupen.com/english/advisories/2009/3520
Common Vulnerability Exposure (CVE) ID: CVE-2009-4329
AIX APAR: IZ52083
http://www-01.ibm.com/support/docview.wss?uid=swg1IZ52083
Common Vulnerability Exposure (CVE) ID: CVE-2009-4330
AIX APAR: IC62501
http://www-01.ibm.com/support/docview.wss?uid=swg1IC62501
Common Vulnerability Exposure (CVE) ID: CVE-2009-4333
AIX APAR: IZ38819
http://www-01.ibm.com/support/docview.wss?uid=swg1IZ38819
Common Vulnerability Exposure (CVE) ID: CVE-2009-4335
AIX APAR: IC62625
http://www-01.ibm.com/support/docview.wss?uid=swg1IC62625
XForce ISS Database: ibm-db2-spatial-unspecified(55007)
https://exchange.xforce.ibmcloud.com/vulnerabilities/55007
Common Vulnerability Exposure (CVE) ID: CVE-2009-4439
AIX APAR: JR31948
http://www-01.ibm.com/support/docview.wss?uid=swg1JR31948
CopyrightCopyright (C) 2009 Greenbone Networks GmbH

Esta es sólo una de 99761 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.

Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.




© 1998-2024 E-Soft Inc. Todos los derechos reservados.