Ibm: >> Db2 Universal Database Security Vulnerabilities
IBM DB2 7.2 before FixPak 10a, and earlier versions including 7.1, allows local users to overwrite arbitrary files and gain privileges via a symlink attack on (1) db2job and (2) db2job2.
CVSS Score
4.6
EPSS Score
0.012
Published
2003-11-17
Buffer overflow in db2dart in IBM DB2 Universal Data Base 7.2 before Fixpak 10 allows local users to gain root privileges via a long command line argument.
CVSS Score
7.2
EPSS Score
0.002
Published
2003-10-06
Buffer overflow in db2licm in IBM DB2 Universal Data Base 7.2 before Fixpak 10a allows local users to gain root privileges via a long command line argument.
CVSS Score
7.2
EPSS Score
0.002
Published
2003-10-06
The DB2 Discovery Service for IBM DB2 before FixPak 10a allows remote attackers to cause a denial of service (crash) via a long packet to UDP port 523.
CVSS Score
5.0
EPSS Score
0.008
Published
2003-10-06
IBM DB2 7.0 allows a remote attacker to cause a denial of service (crash) via a single byte to (1) db2ccs.exe on port 6790, or (2) db2jds.exe on port 6789.
CVSS Score
5.0
EPSS Score
0.011
Published
2001-07-11
IBM DB2 Universal Database version 6.1 creates an account with a default user name and password, which allows remote attackers to gain access to the database.
CVSS Score
7.5
EPSS Score
0.072
Published
2001-02-16
IBM DB2 Universal Database version 6.1 allows users to cause a denial of service via a malformed query.
CVSS Score
2.1
EPSS Score
0.016
Published
2001-02-16
Page 7