Vulnerability Details CVE-2008-4692
The Native Managed Provider for .NET component in IBM DB2 8 before FP17, 9.1 before FP6, and 9.5 before FP2, when a definer cannot maintain objects, preserves views and triggers without marking them inoperative or dropping them, which has unknown impact and attack vectors.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.015
EPSS Ranking 80.0%
CVSS Severity
CVSS v2 Score 10.0
References
- ftp://ftp.software.ibm.com/ps/products/db2/fixes/english-us/aparlist/db2_v91/APARLIST.TXT
- http://secunia.com/advisories/31787
- http://secunia.com/advisories/32368
- http://www-01.ibm.com/support/docview.wss?uid=swg1IZ22287
- http://www-01.ibm.com/support/docview.wss?uid=swg1IZ22306
- http://www-01.ibm.com/support/docview.wss?uid=swg1IZ22307
- http://www-01.ibm.com/support/docview.wss?uid=swg27013892
- http://www.vupen.com/english/advisories/2008/2893
- https://exchange.xforce.ibmcloud.com/vulnerabilities/46021
- ftp://ftp.software.ibm.com/ps/products/db2/fixes/english-us/aparlist/db2_v91/APARLIST.TXT
- http://secunia.com/advisories/31787
- http://secunia.com/advisories/32368
- http://www-01.ibm.com/support/docview.wss?uid=swg1IZ22287
- http://www-01.ibm.com/support/docview.wss?uid=swg1IZ22306
- http://www-01.ibm.com/support/docview.wss?uid=swg1IZ22307
- http://www-01.ibm.com/support/docview.wss?uid=swg27013892
- http://www.vupen.com/english/advisories/2008/2893
- https://exchange.xforce.ibmcloud.com/vulnerabilities/46021
Products affected by CVE-2008-4692
-
cpe:2.3:a:ibm:db2:*
-
cpe:2.3:a:ibm:db2:8.0
-
cpe:2.3:a:ibm:db2:8.2
-
cpe:2.3:a:ibm:db2:9.0
-
cpe:2.3:a:ibm:db2:9.1
-
cpe:2.3:a:ibm:db2:9.5