Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm db2 universal database vulnerabilities and exploits
(subscribe to this query)
1.9
CVSSv2
CVE-2007-4272
Multiple vulnerabilities in IBM DB2 UDB 8 before Fixpak 15 and 9.1 before Fixpak 3 allow local users to create arbitrary files via (1) unspecified vectors where an attacker's umask is honored, (2) /etc/ld.so.preload, (3) certain "cron data file locations", and othe...
Ibm Db2 Universal Database
6.9
CVSSv2
CVE-2007-4276
Stack-based buffer overflow in IBM DB2 UDB 8 before Fixpak 15 and 9.1 before Fixpak 3 allows malicious users to execute arbitrary code via a long DASPROF and possibly other environment variables, which are copied into the buildDasPaths buffer.
Ibm Db2 Universal Database
6
CVSSv2
CVE-2007-4417
IBM DB2 UDB 8 before Fixpak 15 and 9.1 before Fixpak 3 does not properly revoke privileges on methods, which allows remote authenticated users to execute a method after revocation until the routine auth cache is flushed.
Ibm Db2 Universal Database
5
CVSSv2
CVE-2007-4423
Stack-based buffer overflow in the AUTH_LIST_GROUPS_FOR_AUTHID function in IBM DB2 UDB 9.1 before Fixpak 3 allows malicious users to cause a denial of service and possibly execute arbitrary code via a long argument.
Ibm Db2 Universal Database 8.0
Ibm Db2 Universal Database 9.0
Ibm Db2 Universal Database 9.1
5.5
CVSSv2
CVE-2007-4418
IBM DB2 UDB 8 before Fixpak 15 does not properly check authorization, which allows remote authenticated users with a certain SELECT privilege to have an unknown impact via unspecified vectors. NOTE: this issue is probably related to CVE-2007-1089, but this is uncertain due to lac...
Ibm Db2 Universal Database
7.2
CVSSv2
CVE-2007-1089
IBM DB2 Universal Database (UDB) 9.1 GA up to and including 9.1 FP1 allows local users with table SELECT privileges to perform unauthorized UPDATE and DELETE SQL commands via unknown vectors.
Ibm Db2 Universal Database
Ibm Db2 Universal Database 9.1
5
CVSSv2
CVE-2006-6638
IBM DB2 8.1 before FixPak 14 allows remote malicious users to cause a denial of service via a crafted SQLJRA packet, which causes a NULL pointer dereference in the sqle_db2ra_as_recvrequest function in DB2ENGN.DLL, a different issue than CVE-2006-4257.
Ibm Db2 Universal Database 8.10
Ibm Db2 Universal Database 8.12
Ibm Db2 Universal Database 8.1.6
Ibm Db2 Universal Database 8.1.6c
Ibm Db2 Universal Database 8.1.7
Ibm Db2 Universal Database 8.1.7b
Ibm Db2 Universal Database 8.1.8
Ibm Db2 Universal Database 8.1.5
Ibm Db2 Universal Database 8.1.9
Ibm Db2 Universal Database 8.1
Ibm Db2 Universal Database 8.1.4
Ibm Db2 Universal Database 8.1.8a
Ibm Db2 Universal Database 8.1.9a
4
CVSSv2
CVE-2006-4257
IBM DB2 Universal Database (UDB) prior to 8.1 FixPak 13 allows remote authenticated users to cause a denial of service (crash) by (1) sending the first ACCSEC command without an RDBNAM parameter during the CONNECT process, or (2) sending crafted SQLJRA packet, which results in a ...
Ibm Db2 8.1.4
Ibm Db2 8.1.6
Ibm Db2 8.1.7
Ibm Db2 8.1.7b
Ibm Db2 8.1.8a
Ibm Db2 8.1.9a
Ibm Db2 8.1
Ibm Db2 8.0
Ibm Db2 8.1.5
Ibm Db2 8.1.6c
Ibm Db2 8.1.8
Ibm Db2 8.1.9
Ibm Db2 8.12
Ibm Db2 8.2
Ibm Db2 8.10
5
CVSSv2
CVE-2006-3066
Buffer overflow in the TCP/IP listener in IBM DB2 Universal Database (UDB) prior to 8.1 FixPak 12 allows remote malicious users to cause a denial of service (application crash) via a long MGRLVLLS message inside of an EXCSAT message when establishing a connection.
Ibm Db2 Universal Database 8.1.6
Ibm Db2 Universal Database 8.1.6c
Ibm Db2 Universal Database 8.1
Ibm Db2 Universal Database
Ibm Db2 Universal Database 8.1.4
Ibm Db2 Universal Database 8.1.5
Ibm Db2 Universal Database 8.1.9
Ibm Db2 Universal Database 8.1.9a
Ibm Db2 Universal Database 8.1.7
Ibm Db2 Universal Database 8.1.7b
Ibm Db2 Universal Database 8.0
Ibm Db2 Universal Database 8.1.8
Ibm Db2 Universal Database 8.1.8a
5
CVSSv2
CVE-2006-3067
Multiple unspecified vulnerabilities in IBM DB2 Universal Database (UDB) prior to 8.1 FixPak 12 allow remote malicious users to cause a denial of service (application crash) via a (1) "long column list" in the (a) REPLACE INTO and (b) INSERT INTO portions of the LOAD co...
Ibm Db2 Universal Database 8.0
Ibm Db2 Universal Database 8.1
Ibm Db2 Universal Database
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »