Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm db2 8.1 vulnerabilities and exploits
(subscribe to this query)
7.1
CVSSv3
CVE-2005-4868
Shared memory sections and events in IBM DB2 8.1 have default permissions of read and write for the Everyone group, which allows local users to gain unauthorized access, gain sensitive information, such as cleartext passwords, and cause a denial of service.
Ibm Db2 Universal Database 7.1
Ibm Db2 Universal Database 7.2
Ibm Db2 Universal Database 8.0
Ibm Db2 Universal Database 8.1
1 EDB exploit
NA
CVE-2013-0490
Unspecified vulnerability in IBM InfoSphere Guardium S-TAP 8.1 for DB2 on z/OS allows local users to gain privileges via unknown vectors.
Ibm Infosphere Guardium 8.00
NA
CVE-2009-2858
Memory leak in the Security component in IBM DB2 8.1 before FP18 on Unix platforms allows malicious users to cause a denial of service (memory consumption) via unspecified vectors, related to private memory within the DB2 memory structure.
Ibm Db2 8.1
Ibm Db2
NA
CVE-2009-2859
IBM DB2 8.1 before FP18 allows malicious users to obtain unspecified access via a das command.
Ibm Db2 8.1
Ibm Db2
NA
CVE-2009-2860
Unspecified vulnerability in db2jds in IBM DB2 8.1 before FP18 allows remote malicious users to cause a denial of service (service crash) via "malicious packets."
Ibm Db2 8.1
Ibm Db2
NA
CVE-2008-3959
IBM DB2 UDB 8.1 before FixPak 16, 8.2 before FixPak 9, and 9.1 before FixPak 4a allows remote malicious users to cause a denial of service (instance crash) via a crafted SQLJRA packet within a CONNECT/ATTACH data stream that simulates a V7 client connect/attach request.
Ibm Db2 8.1
Ibm Db2 8.2
Ibm Db2
NA
CVE-2007-1086
Unspecified binaries in IBM DB2 8.x prior to 8.1 FixPak 15 and 9.1 before Fix Pack 2 allow local users to create or modify arbitrary files via unspecified environment variables related to "unsafe file access."
Ibm Db2 Universal Database 8.1.5
Ibm Db2 Universal Database 8.1.6
Ibm Db2 Universal Database 8.1.9a
Ibm Db2 Universal Database 8.1
Ibm Db2 Universal Database 8.1.7b
Ibm Db2 Universal Database 8.1.8
Ibm Db2 Universal Database 9.1
Ibm Db2 Universal Database 8.1.6c
Ibm Db2 Universal Database 8.1.7
Ibm Db2 Universal Database 8.10
Ibm Db2 Universal Database 8.12
Ibm Db2 Universal Database 8.0
Ibm Db2 Universal Database 8.1.4
Ibm Db2 Universal Database 8.1.8a
Ibm Db2 Universal Database 8.1.9
NA
CVE-2007-1087
IBM DB2 8.x prior to 8.1 FixPak 15 and 9.1 before Fix Pack 2 does not properly terminate certain input strings, which allows local users to execute arbitrary code via unspecified environment variables that trigger a heap-based buffer overflow.
Ibm Db2 8.0
Ibm Db2 8.1.8a
Ibm Db2 8.1.9
Ibm Db2 8.1.9a
Ibm Db2 8.1
Ibm Db2 8.1.4
Ibm Db2 8.1.5
Ibm Db2 8.1.6
Ibm Db2 8.1.7
Ibm Db2 8.1.8
Ibm Db2 9.1
Ibm Db2 8.1.6c
Ibm Db2 8.1.7b
NA
CVE-2007-1088
Stack-based buffer overflow in IBM DB2 8.x prior to 8.1 FixPak 15 and 9.1 before Fix Pack 2 allows local users to execute arbitrary code via a long string in unspecified environment variables.
Ibm Db2 8.1.6c
Ibm Db2 8.1.7
Ibm Db2 8.1.7b
Ibm Db2 8.1.8
Ibm Db2 8.0
Ibm Db2 8.1
Ibm Db2 9.1
Ibm Db2 8.1.5
Ibm Db2 8.1.9
Ibm Db2 8.1.4
Ibm Db2 8.1.6
Ibm Db2 8.1.8a
Ibm Db2 8.1.9a
NA
CVE-2006-6638
IBM DB2 8.1 before FixPak 14 allows remote malicious users to cause a denial of service via a crafted SQLJRA packet, which causes a NULL pointer dereference in the sqle_db2ra_as_recvrequest function in DB2ENGN.DLL, a different issue than CVE-2006-4257.
Ibm Db2 Universal Database 8.10
Ibm Db2 Universal Database 8.12
Ibm Db2 Universal Database 8.1.6
Ibm Db2 Universal Database 8.1.6c
Ibm Db2 Universal Database 8.1.7
Ibm Db2 Universal Database 8.1.7b
Ibm Db2 Universal Database 8.1.8
Ibm Db2 Universal Database 8.1.5
Ibm Db2 Universal Database 8.1.9
Ibm Db2 Universal Database 8.1
Ibm Db2 Universal Database 8.1.4
Ibm Db2 Universal Database 8.1.8a
Ibm Db2 Universal Database 8.1.9a
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
validation
CVE-2012-1823
malicious code
CVE-2024-5770
CVE-2023-45866
CVE-2024-35687
local users
CVE-2024-31246
CVE-2024-35730
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »