The host is installed with IBM DB2 9.5 before FP9 and is prone to insecure file-permissions vulnerability. A flaw is present in the application, which uses world-writable permissions for nodes.reg. Successful exploitation has unspecified impact and attack vectors.