IBM DB2 9.1 < Fix Pack 10 Multiple Vulnerabilities

This script is Copyright (C) 2011-2015 Tenable Network Security, Inc.

Synopsis :

The remote database server is affected by multiple issues.

Description :

According to its version, the installation of IBM DB2 9.1 running on
the remote host is prior to Fix Pack 10. It is, therefore, affected by
one or more of the following issues :

- It is possible to execute non-DDL statements even after
an user's DBADM authority has been revoked. (IC66811)

- Multiple vulnerabilities in 'db2dasrrm' component could
allow arbitrary code execution. (IC71203)/(IC69986)

See also :

Solution :

Apply IBM DB2 Version 9.1 Fix Pack 10 or later.

Risk factor :

Critical / CVSS Base Score : 10.0
CVSS Temporal Score : 8.7
Public Exploit Available : false

Family: Databases

Nessus Plugin ID: 51840 ()

Bugtraq ID: 46052

CVE ID: CVE-2010-3731