[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244625

 
 

909

 
 

193379

 
 

277

Paid content will be excluded from the download.


Download | Alert*
OVAL

Security bypass vulnerability in IBM DB2 due to an error while compiling a compound SQL statement (Linux)

ID: oval:org.secpod.oval:def:4555Date: (C)2012-03-08   (M)2021-09-12
Class: VULNERABILITYFamily: unix




The host is installed with IBM DB2 9.7 before FP3 and is prone to a security bypass vulnerability. A flaw is present in the application, which fails to properly enforce privilege requirements for execution of entries in the dynamic SQL cache. Successful exploitation could allow authenticated users to bypass intended access restrictions.

Platform:
Linux
Product:
IBM DB2
Reference:
CVE-2010-3475
CVE    1
CVE-2010-3475
CPE    4
cpe:/a:ibm:db2:9.7
cpe:/a:ibm:db2
cpe:/a:ibm:db2:9.7.0.2
cpe:/a:ibm:db2:9.7.0.1
...

© SecPod Technologies