Vulnerabilities > IBM > DB2 Universal Database > 9.0
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2008-02-13 | CVE-2007-5757 | Permissions, Privileges, and Access Controls vulnerability in IBM DB2 Universal Database 9.0 Untrusted search path vulnerability in db2pd in IBM DB2 Universal Database (UDB) 8 before FixPak 16 and 9 before Fix Pack 4 allows local users to gain root privileges via a modified DB2INSTANCE environment variable that points to a malicious library. | 6.9 |
2007-08-18 | CVE-2007-4423 | Buffer Errors vulnerability in IBM DB2 Universal Database 8.0/9.0/9.1 Stack-based buffer overflow in the AUTH_LIST_GROUPS_FOR_AUTHID function in IBM DB2 UDB 9.1 before Fixpak 3 allows attackers to cause a denial of service and possibly execute arbitrary code via a long argument. | 5.0 |