Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

IBM DB2 9.5 < 9.5 Fix Pack 7 Multiple Vulnerabilities

Critical

Synopsis

The remote IBM DB2 database server is affected by multiple vulnerabilities.

Description

Versions of IBM DB2 9.5 earlier than Fix Pack 7 are potentially affected by multiple vulnerabilities :

- A buffer overflow vulnerability exists in the DB2 Administrative Service (DAS). (IC72028) - It is possible to update statistics for tables without appropriate privileges. (IC71413) - It is possible for a user to execute a non-DDL statement after role memebership has been revoked from its group. (IC71263)

Solution

Upgrade to IBM DB2 9.5 Fix Pack 7 or higher.