Vulnerability Details : CVE-2004-0795

DB2 8.1 remote command server (DB2RCMD.EXE) executes the db2rcmdc.exe program as the db2admin administrator, which allows local users to gain privileges via the DB2REMOTECMD named pipe.

Published 2004-10-20 04:00:00

Updated 2017-07-11 01:30:29

Source MITRE

View at NVD, CVE.org

Exploit prediction scoring system (EPSS) score for CVE-2004-0795

Probability of exploitation activity in the next 30 days: 2.08%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 88 % EPSS Score History EPSS FAQ

Metasploit modules for CVE-2004-0795

IBM DB2 db2rcmd.exe Command Execution Vulnerability

Disclosure Date : 2004-03-04

auxiliary/admin/db2/db2rcmd

This module exploits a vulnerability in the Remote Command Server component in IBM's DB2 Universal Database 8.1. An authenticated attacker can send arbitrary commands to the DB2REMOTECMD named pipe which could lead to administrator privileges. Authors: - MC <[email protected]>

More information

CVSS scores for CVE-2004-0795

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Source
7.2	HIGH	AV:L/AC:L/Au:N/C:C/I:C/A:C	3.9	10.0	[email protected]
Access Vector: Local Access Complexity: Low Authentication: None Confidentiality Impact: Complete Integrity Impact: Complete Availability Impact: Complete

References for CVE-2004-0795

https://exchange.xforce.ibmcloud.com/vulnerabilities/15420
http://www.nextgenss.com/advisories/db2rmtcmd.txt
http://www.securityfocus.com/bid/9821

Patch;Vendor Advisory
http://marc.info/?l=bugtraq&m=107885081414173&w=2
http://www-1.ibm.com/support/docview.wss?uid=swg1IY53894

Vendor Advisory

Products affected by CVE-2004-0795