CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2011-4061

Multiple untrusted search path vulnerabilities in (1) db2rspgn and (2) kbbacf1 in IBM DB2 Express Edition 9.7, as used in the IBM Tivoli Monitoring for Databases: DB2 Agent, allow local users to gain privileges via a Trojan horse libkbb.so in the current working directory, related to the DT_RPATH ELF header.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 33.7%

CVSS Severity

CVSS v2 Score 6.9

References

http://securityreason.com/securityalert/8476
http://www.nth-dimension.org.uk/downloads.php?id=77
http://www.nth-dimension.org.uk/downloads.php?id=83
http://www.securityfocus.com/archive/1/518659
http://www.securityfocus.com/bid/48514
http://www.securityfocus.com/bid/51181
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14063
http://securityreason.com/securityalert/8476
http://www.nth-dimension.org.uk/downloads.php?id=77
http://www.nth-dimension.org.uk/downloads.php?id=83
http://www.securityfocus.com/archive/1/518659
http://www.securityfocus.com/bid/48514
http://www.securityfocus.com/bid/51181
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14063

Products affected by CVE-2011-4061

Ibm » Db2 » Version: 9.7

cpe:2.3:a:ibm:db2:9.7
Ibm » Tivoli Monitoring For Databases » Version: Any

cpe:2.3:a:ibm:tivoli_monitoring_for_databases:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2011-4061

Products

Pricing

Contact Us