CVE-2007-4275

Name of the Vulnerable Software and Affected Versions IBM DB2 UDB versions 8.0 through 8.0 before Fixpak 15 IBM DB2 UDB versions 9.1 through 9.1 before Fixpak 3

Description The issue concerns untrusted search path vulnerabilities that allow local users to gain privileges. This is related to certain vectors, including DB2 instance or FMP startup on Linux and Solaris, execution of executables while running as root on non-Windows systems (such as AIX), and unspecified vectors involving db2licm and db2pd.

Recommendations For IBM DB2 UDB versions 8.0 through 8.0 before Fixpak 15, apply Fixpak 15 to resolve the issue. For IBM DB2 UDB versions 9.1 through 9.1 before Fixpak 3, apply Fixpak 3 to resolve the issue.