Test Kennung:	1.3.6.1.4.1.25623.1.0.902489
Kategorie:	Databases
Titel:	IBM Db2 'DT_RPATH' Insecure Library Loading Code Execution Vulnerabilities
Zusammenfassung:	IBM Db2 is prone to insecure library loading vulnerabilities.
Beschreibung:	Summary: IBM Db2 is prone to insecure library loading vulnerabilities. Vulnerability Insight: The flaws are due to an error in 'db2rspgn' and 'kbbacf1', which allow users to gain privileges via a Trojan horse libkbb.so in the current working directory. Vulnerability Impact: Successful exploitation allows local unauthenticated users to gain elevated privileges and execute arbitrary code with root privileges. Affected Software/OS: IBM Db2 version 9.7 Solution: Upgrade to version 9.7 Fix Pack 6, 10.1 Fix Pack 1, or later. CVSS Score: 6.9 CVSS Vector: AV:L/AC:M/Au:N/C:C/I:C/A:C
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2011-4061 BugTraq ID: 48514 http://www.securityfocus.com/bid/48514 BugTraq ID: 51181 http://www.securityfocus.com/bid/51181 Bugtraq: 20110629 Breaking the links: Exploiting the linker (Google Search) http://www.securityfocus.com/archive/1/518659 http://www.nth-dimension.org.uk/downloads.php?id=77 http://www.nth-dimension.org.uk/downloads.php?id=83 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14063 http://securityreason.com/securityalert/8476
Copyright	Copyright (C) 2011 Greenbone AG

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.