PT-2018-12600 · Ibm · Ibm Db2
Quentin Rhoads-Herrera
·
Publicado
2018-05-25
·
Atualizado
2020-08-24
·
CVE-2018-1459
CVSS v3.1
7.8
Alta
| Vetor | AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) versions 9.7 through 11.1
Description
The issue is caused by improper bounds checking, leading to a stack-based buffer overflow. This could allow an attacker to execute arbitrary code.
Recommendations
For versions 9.7 through 11.1, update to a version that includes the fix for the improper bounds checking issue to prevent stack-based buffer overflow and potential arbitrary code execution.
Correção
Memory Corruption
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Ibm Db2