Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
4.6
CVSSv2

CVE-2007-4273

Published: 18/08/2007 Updated: 29/07/2017
CVSS v2 Base Score: 4.6 | Impact Score: 6.4 | Exploitability Score: 3.9
VMScore: 409
Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P
Subscribe to Ibm

Vulnerability Summary

IBM DB2 UDB 8 before Fixpak 15 and 9.1 before Fixpak 3 allows local users to create arbitrary directories and execute arbitrary code via a "crafted localized message file" that enables a format string attack, possibly involving the (1) OSSEMEMDBG or (2) TRC_LOG_FILE environment variable in db2licd (db2licm).

Vulnerable Product Search on Vulmon Subscribe to Product

ibm db2 universal database

References

CWE-134http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=581http://www-1.ibm.com/support/docview.wss?uid=swg21255352http://www-1.ibm.com/support/docview.wss?uid=swg21255607http://www-1.ibm.com/support/docview.wss?uid=swg1IY98011http://www-1.ibm.com/support/docview.wss?uid=swg1IY98101http://secunia.com/advisories/26471http://www.securityfocus.com/bid/25339http://securitytracker.com/id?1018581http://www.vupen.com/english/advisories/2007/2912http://www.attrition.org/pipermail/vim/2007-August/001765.htmlhttps://exchange.xforce.ibmcloud.com/vulnerabilities/36106https://nvd.nist.gov
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895blind SQL injectionCVE-2024-5064CVE-2023-52677CVE-2023-52682CVE-2024-30051CVE-2024-35849remote attackersremote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook