Vulnerabilities > CVE-2003-0898 - Local Security vulnerability in Db2 Universal Database 7.1/8.0
Attack vector
LOCAL Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
IBM DB2 7.2 before FixPak 10a, and earlier versions including 7.1, allows local users to overwrite arbitrary files and gain privileges via a symlink attack on (1) db2job and (2) db2job2.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 2 |
Exploit-Db
| description | IBM DB2 db2job File Overwrite Vulnerability. CVE-2003-0898. Local exploit for unix platform |
| id | EDB-ID:22988 |
| last seen | 2016-02-02 |
| modified | 2003-08-05 |
| published | 2003-08-05 |
| reporter | Juan Manuel Pascual Escribá |
| source | https://www.exploit-db.com/download/22988/ |
| title | IBM DB2 db2job File Overwrite Vulnerability |