Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm db2 9.1 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2009-4150
dasauto in IBM DB2 8 before FP18, 9.1 before FP8, 9.5 before FP4, and 9.7 before FP1 permits execution by unprivileged user accounts, which has unspecified impact and local attack vectors.
Ibm Db2 Universal Database 8
Ibm Db2 9.1
Ibm Db2 9.5
Ibm Db2 9.7
NA
CVE-2012-4826
Stack-based buffer overflow in the SQL/PSM (aka SQL Persistent Stored Module) Stored Procedure (SP) infrastructure in IBM DB2 9.1, 9.5, 9.7 before FP7, 9.8, and 10.1 might allow remote authenticated users to execute arbitrary code by debugging a stored procedure.
Ibm Db2 9.7.0.4
Ibm Db2 9.7.0.3
Ibm Db2 9.1
Ibm Db2 9.5
Ibm Db2 9.7
Ibm Db2 9.8
Ibm Db2 10.1
Ibm Db2 9.7.0.6
Ibm Db2 9.7.0.5
Ibm Db2 9.7.0.2
Ibm Db2 9.7.0.1
NA
CVE-2008-3852
Unspecified vulnerability in the CLR stored procedure deployment from IBM Database Add-Ins for Visual Studio in the Visual Studio Net component in IBM DB2 9.1 before Fixpak 5 and 9.5 before Fixpak 2 allows remote authenticated users to execute arbitrary code via unknown vectors.
Ibm Db2 Universal Database 9.1
Ibm Db2 Universal Database
Ibm Db2 Universal Database 9.5
NA
CVE-2007-1087
IBM DB2 8.x prior to 8.1 FixPak 15 and 9.1 before Fix Pack 2 does not properly terminate certain input strings, which allows local users to execute arbitrary code via unspecified environment variables that trigger a heap-based buffer overflow.
Ibm Db2 8.0
Ibm Db2 8.1.8a
Ibm Db2 8.1.9
Ibm Db2 8.1.9a
Ibm Db2 8.1
Ibm Db2 8.1.4
Ibm Db2 8.1.5
Ibm Db2 8.1.6
Ibm Db2 8.1.7
Ibm Db2 8.1.8
Ibm Db2 9.1
Ibm Db2 8.1.6c
Ibm Db2 8.1.7b
NA
CVE-2007-1088
Stack-based buffer overflow in IBM DB2 8.x prior to 8.1 FixPak 15 and 9.1 before Fix Pack 2 allows local users to execute arbitrary code via a long string in unspecified environment variables.
Ibm Db2 8.1.6c
Ibm Db2 8.1.7
Ibm Db2 8.1.7b
Ibm Db2 8.1.8
Ibm Db2 8.0
Ibm Db2 8.1
Ibm Db2 9.1
Ibm Db2 8.1.5
Ibm Db2 8.1.9
Ibm Db2 8.1.4
Ibm Db2 8.1.6
Ibm Db2 8.1.8a
Ibm Db2 8.1.9a
NA
CVE-2008-3856
The routine infrastructure component in IBM DB2 8 before FP17, 9.1 before FP5, and 9.5 before FP1 on Unix and Linux does not change the ownership of the db2fmp process, which has unknown impact and attack vectors.
Ibm Db2 Universal Database 9.1
Ibm Db2 Universal Database 8.0
Ibm Db2 Universal Database
Ibm Db2 Universal Database 8
NA
CVE-2007-4423
Stack-based buffer overflow in the AUTH_LIST_GROUPS_FOR_AUTHID function in IBM DB2 UDB 9.1 before Fixpak 3 allows malicious users to cause a denial of service and possibly execute arbitrary code via a long argument.
Ibm Db2 Universal Database 8.0
Ibm Db2 Universal Database 9.0
Ibm Db2 Universal Database 9.1
NA
CVE-2007-5758
Stack-based buffer overflow in db2dasrrm in the DB2 Administration Server (DAS) in IBM DB2 Universal Database 9.5 before Fix Pack 1, 9.1 before Fix Pack 4a, and 8 before FixPak 16 allows local users to execute arbitrary code via a long DASPROF environment variable.
Ibm Db2 Universal Database 9.1
Ibm Db2 Universal Database 9.5
Ibm Db2 Universal Database 8
NA
CVE-2007-5664
db2dasrrm in the DB2 Administration Server (DAS) in IBM DB2 Universal Database 9.5 before Fix Pack 1, 9.1 before Fix Pack 4a, and 8 before FixPak 16 allows local users to overwrite arbitrary files via a symlink attack on files used for initialization.
Ibm Db2 Universal Database 9.1
Ibm Db2 Universal Database 9.5
Ibm Db2 Universal Database 8
NA
CVE-2009-3473
IBM DB2 9.1 before FP8 does not require the SETSESSIONUSER privilege for the SET SESSION AUTHORIZATION statement, which has unspecified impact and remote attack vectors.
Ibm Db2 9.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30043
camera
CVE-2023-40404
CVE-2024-2793
client side
CVE-2024-4469
CVE-2024-3565
CVE-2024-29825
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »