Vulnerabilities > IBM > DB2 Universal Database > 7.1
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2004-09-28 | CVE-2002-1583 | Buffer Overflow vulnerability in IBM DB2 db2ckpw Buffer overflow in sqllib/security/db2ckpw for IBM DB2 Universal Database 6.0 and 7.0 allows local users to execute arbitrary code via a long username that is read from a file descriptor argument. | 7.2 |
2004-09-01 | CVE-2004-1372 | Buffer Overflow vulnerability in IBM DB2 Universal Database REC2XML and GENERATE_DISTFILE Multiple stack-based buffer overflows in IBM DB2 7.x and 8.1 allow local users to execute arbitrary code via (1) a long third argument to the rec2xml function or (2) a long filename argument to the generate_distfile procedure. | 7.2 |
2003-11-17 | CVE-2003-0898 | Local Security vulnerability in Db2 Universal Database 7.1/8.0 IBM DB2 7.2 before FixPak 10a, and earlier versions including 7.1, allows local users to overwrite arbitrary files and gain privileges via a symlink attack on (1) db2job and (2) db2job2. | 4.6 |
2003-10-06 | CVE-2003-0827 | Denial-Of-Service vulnerability in IBM DB2 Universal Database 7.1/7.2 The DB2 Discovery Service for IBM DB2 before FixPak 10a allows remote attackers to cause a denial of service (crash) via a long packet to UDP port 523. | 5.0 |
2001-02-16 | CVE-2001-0052 | Unspecified vulnerability in IBM DB2 Universal Database 6.1/7.1 IBM DB2 Universal Database version 6.1 allows users to cause a denial of service via a malformed query. | 2.1 |