PT-2018-12600 · Ibm · Ibm Db2
Quentin Rhoads-Herrera
·
Published
2018-05-25
·
Updated
2020-08-24
·
CVE-2018-1459
CVSS v3.1
7.8
High
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) versions 9.7 through 11.1
Description
The issue is caused by improper bounds checking, leading to a stack-based buffer overflow. This could allow an attacker to execute arbitrary code.
Recommendations
For versions 9.7 through 11.1, update to a version that includes the fix for the improper bounds checking issue to prevent stack-based buffer overflow and potential arbitrary code execution.
Fix
Memory Corruption
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Ibm Db2