PT-2008-5903 · Ibm+1 · Ibm Db2+1

Published

2008-10-22

Updated

2017-08-08

CVE-2008-4692

CVSS v2.0

High

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions IBM DB2 versions 8.0 through 8.0 FP16 IBM DB2 versions 9.1 through 9.1 FP5 IBM DB2 versions 9.5 through 9.5 FP1

Description The issue concerns the Native Managed Provider for .NET component in IBM DB2. When a definer cannot maintain objects, it preserves views and triggers without marking them inoperative or dropping them. The impact and attack vectors of this issue are not specified.

Recommendations For IBM DB2 version 8.0 through 8.0 FP16, update to FP17 or later. For IBM DB2 version 9.1 through 9.1 FP5, update to FP6 or later. For IBM DB2 version 9.5 through 9.5 FP1, update to FP2 or later.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2008-4692

Affected Products

.Net Framework

Ibm Db2

PT-2008-5903 · Ibm+1 · Ibm Db2+1

CVE-2008-4692

Related Identifiers

Affected Products

References · 10