Vulnerability Details CVE-2008-0699
Unspecified vulnerability in the ADMIN_SP_C procedure (SYSPROC.ADMIN_SP_C) in IBM DB2 UDB before 8.2 Fixpak 16, 9.1 before FP4a, and 9.5 before FP1 allows remote authenticated users to execute arbitrary code via unspecified attack vectors.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.08
EPSS Ranking 91.6%
CVSS Severity
CVSS v2 Score 9.0
References
- ftp://ftp.software.ibm.com/ps/products/db2/fixes/english-us/aparlist/db2_v82/APARLIST.TXT
- http://osvdb.org/41795
- http://secunia.com/advisories/28771
- http://secunia.com/advisories/29022
- http://secunia.com/advisories/29784
- http://www-1.ibm.com/support/docview.wss?uid=swg1IZ06972
- http://www-1.ibm.com/support/docview.wss?uid=swg1IZ06973
- http://www-1.ibm.com/support/docview.wss?uid=swg1IZ10917
- http://www.appsecinc.com/resources/alerts/db2/2008-02.shtml
- http://www.securityfocus.com/archive/1/491075/100/0/threaded
- http://www.vupen.com/english/advisories/2008/0401
- ftp://ftp.software.ibm.com/ps/products/db2/fixes/english-us/aparlist/db2_v82/APARLIST.TXT
- http://osvdb.org/41795
- http://secunia.com/advisories/28771
- http://secunia.com/advisories/29022
- http://secunia.com/advisories/29784
- http://www-1.ibm.com/support/docview.wss?uid=swg1IZ06972
- http://www-1.ibm.com/support/docview.wss?uid=swg1IZ06973
- http://www-1.ibm.com/support/docview.wss?uid=swg1IZ10917
- http://www.appsecinc.com/resources/alerts/db2/2008-02.shtml
- http://www.securityfocus.com/archive/1/491075/100/0/threaded
- http://www.vupen.com/english/advisories/2008/0401