[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244625

 
 

909

 
 

193379

 
 

277

Paid content will be excluded from the download.


Download | Alert*
OVAL

Buffer overflow vulnerability (windows) in the DB2 Administration Server (DAS) component in IBM DB2 9.1 before FP10, 9.5 before FP7, and 9.7 before FP3

ID: oval:org.secpod.oval:def:534Date: (C)2011-03-23   (M)2022-10-10
Class: VULNERABILITYFamily: windows




The host is installed with IBM DB2 and is prone to buffer overflow vulnerability. A flaw is present in DB2 Administration Server in the application, which is caused due to a boundary error in the "receiveDASMessage()" function in db2dasrrm. Successful exploitation allows remote attackers a trap in DAS, causing a denial of service, or execution of abritrary code.

Platform:
Microsoft Windows 7
Microsoft Windows Server 2003
Microsoft Windows Server 2008
Microsoft Windows Vista
Microsoft Windows XP
Product:
IBM DB2
Reference:
CVE-2011-0731
CVE    1
CVE-2011-0731
CPE    4
cpe:/a:ibm:db2:9.7
cpe:/a:ibm:db2
cpe:/a:ibm:db2:9.1
cpe:/a:ibm:db2:9.5
...

© SecPod Technologies