This script is Copyright (C) 2009-2014 Tenable Network Security, Inc.
The remote database server is affected by multiple issues.
According to its version, the installation of DB2 8.1 on the remote
host is affected by one or more of the following issues :
- A local attacker may be able to gain write access to an
arbitrary file using DAS, which could lead to gaining
root privileges. (IZ34149)
- It may be possible to crash the server by sending
specially crafted packets to the 'DB2JDS' service.
- The security component in UNIX installs is affected
by a private memory leak. (IZ35635)
- The 'DASAUTO' command can be run by a non-privileged
See also :
Apply DB2 UDB Version 8.1 FixPak 18 or later.
Risk factor :
Medium / CVSS Base Score : 5.0
CVSS Temporal Score : 3.7
Public Exploit Available : false