Buffer overflow in db2dart in IBM DB2 Universal Data Base 7.2 before Fixpak 10 allows local users to gain root privileges via a long command line argument.
source: wwwsecurityfocuscom/bid/8552/info
It has been reported that the IBM DB2 db2dart utility is prone to locally exploitable buffer overflow vulnerability A local attacker, who can authenticate or has access as the db2as user, may exploit this issue to execute arbitrary instructions with elevated privileges Specifically, user 'root' ...