PT-2011-3408 · Ibm · Ibm Db2
Publicado
2011-05-03
·
Atualizado
2017-09-19
·
CVE-2011-1847
CVSS v2.0
4.9
Média
| Vetor | AV:N/AC:M/Au:S/C:N/I:P/A:P |
Name of the Vulnerable Software and Affected Versions
IBM DB2 versions 9.5 before FP7
IBM DB2 versions 9.7 before FP4
Description
The issue is related to improper enforcement of privilege requirements for table access. This allows remote authenticated users to modify SYSSTAT.TABLES statistics columns via an UPDATE statement.
Recommendations
For IBM DB2 version 9.5, update to FP7 or later to resolve the issue.
For IBM DB2 version 9.7, update to FP4 or later to resolve the issue.
Correção
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Ibm Db2