Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2003-1052

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-2003-1052
Last Modified 05 Sep 2008 04:35:54
Published 28 Sep 2004 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2003-1052

Summary

IBM DB2 7.1 and 8.1 allow the bin user to gain root privileges by modifying the shared libraries that are used in setuid root programs.

Vulnerable Systems

Application

  • Ibm Db2 9.0

  • Ibm Db2 Universal Database 6.0

  • Ibm Db2 Universal Database 7.0

  • Ibm Db2 Universal Database 7.1

  • Ibm Db2 Universal Database 7.2

  • Ibm Db2 Universal Database 8.0

  • Ibm Db2 Universal Database 8.1

  • Ibm Db2 Universal Database 8.2


References

BID - 8346

BUGTRAQ - 20030805 Slight privilege elevation from bin to root in IBM DB2 7.1 - 8.1 all binaries

XF - ibm-db2-gain-privileges(12826)


Last Updated: 27 May 2016 10:38:09