PT-2012-5598 · Ibm · Ibm Db2

Martin Rakhmanov

Publicado

2012-10-20

Atualizado

2013-03-02

CVE-2012-4826

CVSS v2.0

8.5

Alta

Vetor

AV:N/AC:M/Au:S/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions IBM DB2 versions 9.1, 9.5, 9.7 before FP7, 9.8, and 10.1

Description A stack-based buffer overflow issue exists in the SQL/PSM Stored Procedure infrastructure, potentially allowing remote authenticated users to execute arbitrary code by debugging a stored procedure.

Recommendations For IBM DB2 version 9.1, update to a version that includes the fix for this issue. For IBM DB2 version 9.5, update to a version that includes the fix for this issue. For IBM DB2 version 9.7, apply FP7 or a later fix pack to resolve the issue. For IBM DB2 version 9.8, update to a version that includes the fix for this issue. For IBM DB2 version 10.1, update to a version that includes the fix for this issue.

Correção

Buffer Overflow

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-119

Identificadores relacionados

CVE-2012-4826

Produtos afetados

Ibm Db2

PT-2012-5598 · Ibm · Ibm Db2

CVE-2012-4826

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 10