Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm db2 universal database 8 vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2007-3676
IBM DB2 Universal Database (UDB) Administration Server (DAS) 8 before Fix Pack 16 and 9 before Fix Pack 4 allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via modified pointer values in unspecified remote administration reques...
Ibm Db2
7.5
CVSSv2
CVE-2008-3856
The routine infrastructure component in IBM DB2 8 before FP17, 9.1 before FP5, and 9.5 before FP1 on Unix and Linux does not change the ownership of the db2fmp process, which has unknown impact and attack vectors.
Ibm Db2 Universal Database 9.1
Ibm Db2 Universal Database 8.0
Ibm Db2 Universal Database
Ibm Db2 Universal Database 8
6.9
CVSSv2
CVE-2007-5664
db2dasrrm in the DB2 Administration Server (DAS) in IBM DB2 Universal Database 9.5 before Fix Pack 1, 9.1 before Fix Pack 4a, and 8 before FixPak 16 allows local users to overwrite arbitrary files via a symlink attack on files used for initialization.
Ibm Db2 Universal Database 9.1
Ibm Db2 Universal Database 9.5
Ibm Db2 Universal Database 8
6.9
CVSSv2
CVE-2007-5758
Stack-based buffer overflow in db2dasrrm in the DB2 Administration Server (DAS) in IBM DB2 Universal Database 9.5 before Fix Pack 1, 9.1 before Fix Pack 4a, and 8 before FixPak 16 allows local users to execute arbitrary code via a long DASPROF environment variable.
Ibm Db2 Universal Database 9.1
Ibm Db2 Universal Database 9.5
Ibm Db2 Universal Database 8
6.9
CVSSv2
CVE-2007-5757
Untrusted search path vulnerability in db2pd in IBM DB2 Universal Database (UDB) 8 before FixPak 16 and 9 before Fix Pack 4 allows local users to gain root privileges via a modified DB2INSTANCE environment variable that points to a malicious library. NOTE: this might be the same ...
Ibm Db2 Universal Database
Ibm Db2 Universal Database 9.0
6.9
CVSSv2
CVE-2007-4270
Multiple race conditions in IBM DB2 UDB 8 before Fixpak 15 and 9.1 before Fixpak 3 allow local users to gain root privileges via a symlink attack on certain files.
Ibm Db2 Universal Database
6.9
CVSSv2
CVE-2007-4275
Multiple untrusted search path vulnerabilities in IBM DB2 UDB 8 before Fixpak 15 and 9.1 before Fixpak 3 allow local users to gain privileges via certain vectors related to (1) DB2 instance or FMP startup on Linux and Solaris; (2) exec of executables while running as root on non-...
Ibm Db2 Universal Database
6.9
CVSSv2
CVE-2007-4276
Stack-based buffer overflow in IBM DB2 UDB 8 before Fixpak 15 and 9.1 before Fixpak 3 allows malicious users to execute arbitrary code via a long DASPROF and possibly other environment variables, which are copied into the buildDasPaths buffer.
Ibm Db2 Universal Database
6.8
CVSSv2
CVE-2005-4739
IBM DB2 Universal Database (UDB) 820 before version 8 FixPak 10 (s050811) allows remote authenticated users to cause a denial of service (application crash) by using a table function for an instance of snapshot_tbreorg, which triggers a trap in sqlnr_EStoE_action.
Ibm Db2 Universal Database 8.1.6c
Ibm Db2 Universal Database 8.1.7
Ibm Db2 Universal Database 8.1.7b
Ibm Db2 Universal Database 8.1.8
Ibm Db2 Universal Database 8.1.4
Ibm Db2 Universal Database 8.1.6
Ibm Db2 Universal Database 8.1.8a
Ibm Db2 Universal Database 8.1.9a
Ibm Db2 Universal Database 8.0
Ibm Db2 Universal Database 8.1.5
Ibm Db2 Universal Database 8.1.9
Ibm Db2 Universal Database 8.1
6
CVSSv2
CVE-2007-4417
IBM DB2 UDB 8 before Fixpak 15 and 9.1 before Fixpak 3 does not properly revoke privileges on methods, which allows remote authenticated users to execute a method after revocation until the routine auth cache is flushed.
Ibm Db2 Universal Database
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »