Vulnerability Details CVE-2005-4868
Shared memory sections and events in IBM DB2 8.1 have default permissions of read and write for the Everyone group, which allows local users to gain unauthorized access, gain sensitive information, such as cleartext passwords, and cause a denial of service.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 34.2%
CVSS Severity
CVSS v3 Score 7.1
CVSS v2 Score 2.1
References
- http://marc.info/?l=bugtraq&m=110495402231836&w=2
- http://secunia.com/advisories/12733/
- http://www-1.ibm.com/support/docview.wss?uid=swg21181228
- http://www.nextgenss.com/advisories/db205012005F.txt
- http://www.securityfocus.com/bid/11402
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17605
- http://marc.info/?l=bugtraq&m=110495402231836&w=2
- http://secunia.com/advisories/12733/
- http://www-1.ibm.com/support/docview.wss?uid=swg21181228
- http://www.nextgenss.com/advisories/db205012005F.txt
- http://www.securityfocus.com/bid/11402
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17605
Products affected by CVE-2005-4868
-
cpe:2.3:a:ibm:db2_universal_database:7.1
-
cpe:2.3:a:ibm:db2_universal_database:7.2
-
cpe:2.3:a:ibm:db2_universal_database:8.0
-
cpe:2.3:a:ibm:db2_universal_database:8.1
-
cpe:2.3:o:microsoft:windows:-