Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-4738

Overview

Vulnerability Score 6.5 6.5
CVE Id CVE-2005-4738
Last Modified 05 Sep 2008 04:57:40
Published 31 Dec 2005 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication SINGLE_INSTANCE

CVE-2005-4738

Summary

IBM DB2 Universal Database (UDB) 810 before ESE AIX 5765F4100 does not ensure that a user has execute privileges before permitting object creation based on routines, which allows remote authenticated users to gain privileges.

Vulnerable Systems

Application

  • Ibm Db2 Universal Database 8.0

  • Ibm Db2 Universal Database 8.1

  • Ibm Db2 Universal Database 8.1.4

  • Ibm Db2 Universal Database 8.1.5

  • Ibm Db2 Universal Database 8.1.6

  • Ibm Db2 Universal Database 8.1.6c

  • Ibm Db2 Universal Database 8.1.7

  • Ibm Db2 Universal Database 8.1.7b

  • Ibm Db2 Universal Database 8.1.8

  • Ibm Db2 Universal Database 8.1.8a

  • Ibm Db2 Universal Database 8.1.9

  • Ibm Db2 Universal Database 8.1.9a


References

BID - 15126

AIXAPAR - IY71865

SECUNIA - 17031


Last Updated: 27 May 2016 10:41:24