IBM DB2 10.5 < Fix Pack 1 Security Bypass

This script is Copyright (C) 2013-2015 Tenable Network Security, Inc.

Synopsis :

The remote database server is affected by security bypass

Description :

According to its version, the installation of IBM DB2 10.5 running on
the remote host is affected by a security bypass vulnerability.

An unspecified error exists that can allow an attacker to gain SELECT,
INSERT, UPDATE, or DELETE permissions to database tables.

Note that successful exploitation requires the rights EXPLAIN, SQLADM,

See also :

Solution :

Apply IBM DB2 version 10.5 Fix Pack 1 or later.

Risk factor :

Medium / CVSS Base Score : 4.6
CVSS Temporal Score : 4.0
Public Exploit Available : true

Family: Databases

Nessus Plugin ID: 69800 ()

Bugtraq ID: 62018

CVE ID: CVE-2013-4033

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now