Buffer overflow in sqllib/security/db2ckpw for IBM DB2 Universal Database 6.0 and 7.0 allows local users to execute arbitrary code via a long username that is read from a file descriptor argument.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ibm db2 universal database 7.1 |
||
ibm db2 universal database 8.2 |
||
ibm db2 universal database 6.0 |
||
ibm db2 universal database 7.0 |
||
ibm db2 universal database 7.2 |