Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-4692

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2008-4692
Last Modified 07 Mar 2011 10:12:53
Published 22 Oct 2008 02:00:01
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-4692

Summary

The Native Managed Provider for .NET component in IBM DB2 8 before FP17, 9.1 before FP6, and 9.5 before FP2, when a definer cannot maintain objects, preserves views and triggers without marking them inoperative or dropping them, which has unknown impact and attack vectors.

Vulnerable Systems

Application

  • Ibm Db2 8.0

  • Ibm Db2 9.1

  • Ibm Db2 9.5


References

XF - ibm-db2-native-managed-unspecified(46021)

VUPEN - ADV-2008-2893

CONFIRM - http://www-01.ibm.com/support/docview.wss?uid=swg27013892

SECUNIA - 32368

SECUNIA - 31787

CONFIRM - ftp://ftp.software.ibm.com/ps/products/db2/fixes/english-us/aparlist/db2_v91/APARLIST.TXT


Last Updated: 27 May 2016 10:48:35