The Relational Data Services component in IBM DB2 9.5 before FP5 allows malicious users to obtain the password argument from the SET ENCRYPTION PASSWORD statement via vectors involving the GET SNAPSHOT FOR DYNAMIC SQL command.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ibm db2 9.5 |