CVE-2007-6047

Properties

Published:
19.11.2007
Updated:
22.11.2007
Patch available:
Severity:
High
CVSS vector:
(AV:N/AC:L/Au:N/C:C/I:C/A:C)
Product:
IBM: DB2 Universal Database

Vulnerability description

Unspecified vulnerability in the DB2DART tool in IBM DB2 UDB 9.1 before Fixpak 4 allows attackers to execute arbitrary commands as the DB2 instance owner, related to invocation of TPUT by DB2DART.

References:

http://www-1.ibm.com/support/docview.wss?uid=swg21255607: http://www-1.ibm.com/support/docview.wss?uid=swg21255607
BID: http://www.securityfocus.com/bid/26450
FRSIRT: http://www.frsirt.com/english/advisories/2007/3867
SECUNIA: http://secunia.com/advisories/27667