Vulnerabilities > CVE-2007-6052 - Privilege Escalation vulnerability in IBM DB2

047910
CVSS 7.8 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
COMPLETE
network
low complexity
linux
microsoft
unix
ibm
nessus

Summary

IBM DB2 UDB 9.1 before Fixpak 4 does not properly perform vector aggregation, which might allow attackers to cause a denial of service (divide-by-zero error and DBMS crash), related to an "overflow." NOTE: the vendor description of this issue is too vague to be certain that it is security-related.

Vulnerable Configurations

Part Description Count
OS
Linux
1
OS
Microsoft
1
OS
Unix
1
Application
Ibm
1

Nessus

NASL familyDatabases
NASL idDB2_9FP4.NASL
descriptionAccording to its version, the installation of IBM DB2 running on the remote host is affected by one or more of the following issues : - The
last seen2020-06-01
modified2020-06-02
plugin id28227
published2007-11-16
reporterThis script is Copyright (C) 2007-2018 and is owned by Tenable, Inc. or an Affiliate thereof.
sourcehttps://www.tenable.com/plugins/nessus/28227
titleIBM DB2 < 9 Fix Pack 4 Multiple Vulnerabilities