IBM DB2 Multiple Vulnerabilities

Last Update Date: 13 Jul 2018 09:57 Release Date: 13 Jul 2018 4655 Views

RISK: Medium Risk

TYPE: Servers - Database Servers

Multiple vulnerabilities have been identified in IBM DB2. A remote user can exploit these vulnerabilities to trigger elevation of privilege, remote code execution and sensitive information disclosure on the targeted system.

Impact

Elevation of Privilege
Remote Code Execution
Information Disclosure

System / Technologies affected

Versions 9.7, 10.1, 10.5 and 11.1

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.

The vendor has issued fixes:
http://www-01.ibm.com/support/docview.wss?uid=swg22016141
http://www-01.ibm.com/support/docview.wss?uid=swg22016140
http://www-01.ibm.com/support/docview.wss?uid=swg22016182
http://www-01.ibm.com/support/docview.wss?uid=ibm10716907

IBM DB2 Multiple Vulnerabilities

Impact

System / Technologies affected

Solutions

Vulnerability Identifier

Source

Related Link