Vulnerabilities > CVE-2003-1051 - Command-line Format String vulnerability in IBM DB2 9.0
Attack vector
LOCAL Attack complexity
LOW Privileges required
NONE Confidentiality impact
COMPLETE Integrity impact
COMPLETE Availability impact
COMPLETE Summary
Multiple format string vulnerabilities in IBM DB2 Universal Database 8.1 may allow local users to execute arbitrary code via certain command line arguments to (1) db2start, (2) db2stop, or (3) db2govd.
Exploit-Db
description IBM DB2 db2start Format String Arbitrary Code Execution. CVE-2003-1051. Local exploit for linux platform id EDB-ID:23344 last seen 2016-02-02 modified 2003-11-07 published 2003-11-07 reporter SNOSoft source https://www.exploit-db.com/download/23344/ title IBM DB2 db2start Format String Arbitrary Code Execution description IBM DB2 db2govd Format String Arbitrary Code Execution. CVE-2003-1051. Local exploit for linux platform id EDB-ID:23346 last seen 2016-02-02 modified 2003-11-07 published 2003-11-07 reporter SNOSoft source https://www.exploit-db.com/download/23346/ title IBM DB2 db2govd Format String Arbitrary Code Execution description IBM DB2 db2stop Format String Arbitrary Code Execution. CVE-2003-1051. Local exploit for linux platform id EDB-ID:23345 last seen 2016-02-02 modified 2003-11-07 published 2003-11-07 reporter SNOSoft source https://www.exploit-db.com/download/23345/ title IBM DB2 db2stop Format String Arbitrary Code Execution