icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons_061

IBM DB2 9.1 < Fix Pack 7 Information Disclosure

Medium

Synopsis

The remote IBM DB2 database server is affected by an information disclosure vulnerability.

Description

According to its version, the installed version of IBM DB2 server is older than 9.1 Fix Pack 7. Such versions are reportedly affected by an information disclosure vulnerability. Specifically, in certain situations an INNER JOIN predicate is applied before the OUTER JOIN predicate, which could result in disclosure of sensitive information. (JR31886).

Solution

Apply IBM DB2 Version 9.1 Fix Pack 7 or higher.