CVE-2003-1051

Name of the Vulnerable Software and Affected Versions IBM DB2 Universal Database version 8.1

Description The issue concerns multiple format string vulnerabilities that may allow local users to execute arbitrary code. This can be achieved by providing certain command line arguments to specific commands, including (1) db2start, (2) db2stop, or (3) db2govd.

Recommendations For IBM DB2 Universal Database version 8.1, apply the necessary patches or updates to fix the format string vulnerabilities in the db2start, db2stop, and db2govd commands. As a temporary workaround, consider restricting access to these commands to minimize the risk of exploitation.