Published: 28/09/2004 Updated: 11/07/2017

CVSS v2 Base Score: 7.2 | Impact Score: 10 | Exploitability Score: 3.9

VMScore: 735

Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C

Multiple format string vulnerabilities in IBM DB2 Universal Database 8.1 may allow local users to execute arbitrary code via certain command line arguments to (1) db2start, (2) db2stop, or (3) db2govd.

Vulnerable Product	Search on Vulmon	Subscribe to Product
ibm db2 9.0

source: wwwsecurityfocuscom/bid/8989/info Multiple command-line parameter format string vulnerabilities have been discovered in various IBM DB2 binaries Specifically, format-based functions are implemented erroneously within the db2govd, db2start, and db2stop programs These binaries are typically installed setuid As a result, a malicio ...

source: wwwsecurityfocuscom/bid/8989/info Multiple command-line parameter format string vulnerabilities have been discovered in various IBM DB2 binaries Specifically, format-based functions are implemented erroneously within the db2govd, db2start, and db2stop programs These binaries are typically installed setuid As a result, a malic ...

source: wwwsecurityfocuscom/bid/8989/info Multiple command-line parameter format string vulnerabilities have been discovered in various IBM DB2 binaries Specifically, format-based functions are implemented erroneously within the db2govd, db2start, and db2stop programs These binaries are typically installed setuid As a result, a malici ...

NVD-CWE-Other http://www.securityfocus.com/archive/1/343804 http://www.securityfocus.com/bid/8989 http://www.secnetops.com/research/advisories/SRT2003-11-06-0710.txt https://exchange.xforce.ibmcloud.com/vulnerabilities/13633 https://nvd.nist.gov https://www.exploit-db.com/exploits/23344/

CVE-2003-1051

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect