漏洞类别:Database
漏洞等级: 
漏洞信息
IBM DB2 Command Line Process (CLP) is vulnerable to a stack based buffer overflow, caused by improper bounds checking which could allow a local attacker to execute arbitrary code. Affected Versions:-
DB2 versions 9.7 prior to Fix Pack 11
DB2 versions 10.1 prior to Fix Pack 6
DB2 versions 10.5 prior to Fix Pack 8
DB2 versions 11.1 prior to 11.1.2 Fix Pack 2
漏洞危害
Successful exploitation could allow a local attacker to execute arbitrary code
解决方案
The vulnerability has been resolved in the following versions:
IT20570 IBM DB2 versions 9.7 Fix Pack 11
IT20571 IBM DB2 versions 10.1 Fix Pack 6
IT20498 IBM DB2 versions 10.5 Fix Pack 8
IT20562 IBM DB2 versions 11.1.2 Fix Pack 2
Patch:
Following are links for downloading patches to fix the vulnerabilities:
0daybank
文章评论