Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
db2 universal database vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2005-4863
Stack-based buffer overflow in db2fmp in IBM DB2 7.x and 8.1 allows local users to execute arbitrary code via a long parameter.
Ibm Db2 Universal Database 7.0
Ibm Db2 Universal Database 7.2
Ibm Db2 Universal Database 7.1
Ibm Db2 Universal Database 8.1
NA
CVE-2005-4867
Stack-based buffer overflow in the SATENCRYPT function in IBM DB2 8.1, when Satellite Administration (SATADMIN) is enabled, allows remote malicious users to execute arbitrary code via a long parameter.
Ibm Db2 Universal Database 7.0
Ibm Db2 Universal Database 7.2
Ibm Db2 Universal Database 8.0
Ibm Db2 Universal Database 8.1
Ibm Db2 Universal Database 7.1
NA
CVE-2005-4736
IBM DB2 Universal Database (UDB) 820 prior to 8.2 FP10 allows remote authenticated users to cause a denial of service (disk consumption) via a hash join (hsjn) that triggers an infinite loop in sqlri_hsjnFlushBlocks.
Ibm Db2 Universal Database 8.1.4
Ibm Db2 Universal Database 8.1.5
Ibm Db2 Universal Database 8.1.6
Ibm Db2 Universal Database 8.1.6c
Ibm Db2 Universal Database 8.1.9
Ibm Db2 Universal Database 8.1.9a
Ibm Db2 Universal Database 8.1
Ibm Db2 Universal Database 8.1.7b
Ibm Db2 Universal Database 8.1.8a
Ibm Db2 Universal Database 8.0
Ibm Db2 Universal Database 8.1.7
Ibm Db2 Universal Database 8.1.8
NA
CVE-2005-3643
IBM DB2 Database server running on Windows XP with Simple File Sharing enabled, allows remote malicious users to bypass authentication and log on to the guest account without supplying a password.
Ibm Db2 Universal Database 7.2
Ibm Db2 Universal Database 8.1.4
Ibm Db2 Universal Database 8.1.8a
Ibm Db2 Universal Database 8.1.9a
Ibm Db2 Universal Database 8.1.5
Ibm Db2 Universal Database 8.1.6
Ibm Db2 Universal Database 8.1.6c
Ibm Db2 Universal Database 8.1.7
Ibm Db2 Universal Database 8.1.7b
Ibm Db2 Universal Database 8.1
Ibm Db2 Universal Database 7.1
Ibm Db2 Universal Database 8.0
Ibm Db2 Universal Database 8.1.8
Ibm Db2 Universal Database 8.1.9
NA
CVE-2005-0417
Unknown "high risk" vulnerability in DB2 Universal Database 8.1 and previous versions has unknown impact and attack vectors. NOTE: due to the delayed disclosure of details for this issue, this candidate may be SPLIT in the future. In addition, this may be a duplicate of...
Ibm Db2 Universal Database 8.2
Ibm Db2 Universal Database 8.0
Ibm Db2 Universal Database 8.1
Ibm Db2 Universal Database 6.0
Ibm Db2 Universal Database 7.0
Ibm Db2 Universal Database 7.1
Ibm Db2 Universal Database 7.2
NA
CVE-2004-0795
DB2 8.1 remote command server (DB2RCMD.EXE) executes the db2rcmdc.exe program as the db2admin administrator, which allows local users to gain privileges via the DB2REMOTECMD named pipe.
Ibm Db2 Universal Database 8.1
NA
CVE-2003-1050
Multiple buffer overflows in IBM DB2 Universal Database 8.1 may allow local users to execute arbitrary code via long command line arguments to (1) db2start, (2) db2stop, or (3) db2govd.
3 EDB exploits
NA
CVE-2002-1583
Buffer overflow in sqllib/security/db2ckpw for IBM DB2 Universal Database 6.0 and 7.0 allows local users to execute arbitrary code via a long username that is read from a file descriptor argument.
Ibm Db2 Universal Database 7.1
Ibm Db2 Universal Database 8.2
Ibm Db2 Universal Database 6.0
Ibm Db2 Universal Database 7.0
Ibm Db2 Universal Database 7.2
NA
CVE-2003-1049
IBM DB2 Universal Database 7 before FixPak 12 creates certain DMS directories with insecure permissions (777), which allows local users to modify or delete certain DB2 files.
Ibm Db2 Universal Database 7.0
Ibm Db2 Universal Database 8.0
NA
CVE-2003-1051
Multiple format string vulnerabilities in IBM DB2 Universal Database 8.1 may allow local users to execute arbitrary code via certain command line arguments to (1) db2start, (2) db2stop, or (3) db2govd.
Ibm Db2 9.0
3 EDB exploits
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »