Heap-based buffer overflow vulnerability in IBM DB2 9.1 before FP9, 9.5 before FP6, and 9.7 before FP2ID: oval:org.secpod.oval:def:642 | Date: (C)2011-04-08 (M)2022-10-10 |
Class: VULNERABILITY | Family: windows |
The host is installed with IBM DB2 9.1 before FP9 or 9.5 before FP6a or 9.7 before FP2 and is prone to Heap-based buffer overflow vulnerability. A flaw is present in the application which does not properly handle bounds check. Successful exploitation allow remote attacker could overflow a buffer and execute arbitrary code on the system with elevated privileges or cause the database server to crash via a specially-crafted SELECT REPEAT query to a SYSIBM table.
Platform: |
Microsoft Windows 7 |
Microsoft Windows Server 2003 |
Microsoft Windows Server 2008 |
Microsoft Windows Vista |
Microsoft Windows XP |