CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2009-3473

IBM DB2 9.1 before FP8 does not require the SETSESSIONUSER privilege for the SET SESSION AUTHORIZATION statement, which has unspecified impact and remote attack vectors.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.006

EPSS Ranking 68.5%

CVSS Severity

CVSS v2 Score 10.0

References

http://osvdb.org/58479
http://secunia.com/advisories/36890
http://www-01.ibm.com/support/docview.wss?uid=swg1IZ55883
http://www-01.ibm.com/support/docview.wss?uid=swg21403619
http://www.securityfocus.com/bid/36540
http://osvdb.org/58479
http://secunia.com/advisories/36890
http://www-01.ibm.com/support/docview.wss?uid=swg1IZ55883
http://www-01.ibm.com/support/docview.wss?uid=swg21403619
http://www.securityfocus.com/bid/36540

Products affected by CVE-2009-3473

Ibm » Db2 » Version: 9.1

cpe:2.3:a:ibm:db2:9.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2009-3473

Products

Pricing

Contact Us