PT-2009-6454 · Ibm · Ibm Db2
Publicado
2009-12-16
·
Atualizado
2010-10-07
·
CVE-2009-4331
CVSS v2.0
7.2
Alta
| Vetor | AV:L/AC:L/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
IBM DB2 versions 9.5 before FP5
IBM DB2 versions 9.7 before FP1
Description
The Install component in IBM DB2 configures the High Availability (HA) scripts with incorrect file-permission and authorization settings. This issue has unknown impact and local attack vectors.
Recommendations
For IBM DB2 version 9.5, update to FP5 or later to resolve the issue.
For IBM DB2 version 9.7, update to FP1 or later to resolve the issue.
Exploit
Correção
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Ibm Db2