IBM DB2 7.2 before FixPak 10a, and earlier versions including 7.1, allows local users to overwrite arbitrary files and gain privileges via a symlink attack on (1) db2job and (2) db2job2.
Max CVSS
4.6
EPSS Score
0.04%
Published
2003-11-17
Updated
2016-10-18
Stack-based buffer overflow in IBM DB2 Universal Data Base 7.2 for Windows, before Fixpak 10a, allows attackers with "Connect" privileges to execute arbitrary code via the INVOKE command.
Max CVSS
7.5
EPSS Score
0.77%
Published
2003-11-17
Updated
2017-07-11
Stack-based buffer overflow in IBM DB2 Universal Data Base 7.2 before Fixpak 10 and 10a, and 8.1 before Fixpak 2, allows attackers with "Connect" privileges to execute arbitrary code via a LOAD command.
Max CVSS
7.5
EPSS Score
0.52%
Published
2003-11-17
Updated
2022-08-16
The DB2 Discovery Service for IBM DB2 before FixPak 10a allows remote attackers to cause a denial of service (crash) via a long packet to UDP port 523.
Max CVSS
5.0
EPSS Score
0.39%
Published
2003-10-06
Updated
2016-10-18
Buffer overflow in db2licm in IBM DB2 Universal Data Base 7.2 before Fixpak 10a allows local users to gain root privileges via a long command line argument.
Max CVSS
7.2
EPSS Score
0.04%
Published
2003-10-06
Updated
2016-10-18
Buffer overflow in db2dart in IBM DB2 Universal Data Base 7.2 before Fixpak 10 allows local users to gain root privileges via a long command line argument.
Max CVSS
7.2
EPSS Score
0.04%
Published
2003-10-06
Updated
2017-07-11
6 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!