Vulnerabilities > IBM > DB2 Universal Database > 7.1

DATE CVE VULNERABILITY TITLE RISK
2004-09-28 CVE-2002-1583 Buffer Overflow vulnerability in IBM DB2 db2ckpw
Buffer overflow in sqllib/security/db2ckpw for IBM DB2 Universal Database 6.0 and 7.0 allows local users to execute arbitrary code via a long username that is read from a file descriptor argument.
local
low complexity
ibm
7.2
7.2
2004-09-01 CVE-2004-1372 Buffer Overflow vulnerability in IBM DB2 Universal Database REC2XML and GENERATE_DISTFILE
Multiple stack-based buffer overflows in IBM DB2 7.x and 8.1 allow local users to execute arbitrary code via (1) a long third argument to the rec2xml function or (2) a long filename argument to the generate_distfile procedure.
local
low complexity
ibm
7.2
7.2
2003-11-17 CVE-2003-0898 Local Security vulnerability in Db2 Universal Database 7.1/8.0
IBM DB2 7.2 before FixPak 10a, and earlier versions including 7.1, allows local users to overwrite arbitrary files and gain privileges via a symlink attack on (1) db2job and (2) db2job2.
local
low complexity
ibm
4.6
4.6
2003-10-06 CVE-2003-0827 Denial-Of-Service vulnerability in IBM DB2 Universal Database 7.1/7.2
The DB2 Discovery Service for IBM DB2 before FixPak 10a allows remote attackers to cause a denial of service (crash) via a long packet to UDP port 523.
network
low complexity
ibm
5.0
5.0
2001-02-16 CVE-2001-0052 Unspecified vulnerability in IBM DB2 Universal Database 6.1/7.1
IBM DB2 Universal Database version 6.1 allows users to cause a denial of service via a malformed query.
local
low complexity
ibm
2.1
2.1