PT-2007-2517 · Ibm · Ibm Db2 Universal Database

Published

2007-02-23

Updated

2018-10-30

CVE-2007-1089

CVSS v2.0

7.2

High

Vector

AV:L/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions IBM DB2 Universal Database (UDB) versions 9.1 GA through 9.1 FP1

Description The issue allows local users with table SELECT privileges to perform unauthorized UPDATE and DELETE SQL commands.

Recommendations For versions 9.1 GA through 9.1 FP1, consider restricting table SELECT privileges to minimize the risk of exploitation until a patch is available.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2007-1089

Affected Products

Ibm Db2 Universal Database

PT-2007-2517 · Ibm · Ibm Db2 Universal Database

CVE-2007-1089

Related Identifiers

Affected Products

References · 5