Test ID:	1.3.6.1.4.1.25623.1.0.803756
Category:	Databases
Title:	IBM Db2 Audit Facility Local Privilege Escalation Vulnerability - Linux
Summary:	IBM Db2 is prone to a privilege escalation vulnerability.
Description:	Summary: IBM Db2 is prone to a privilege escalation vulnerability. Vulnerability Insight: The flaw is due to a boundary error within the setuid-set db2aud binary, which can be exploited to cause a stack-based buffer overflow. Vulnerability Impact: Successful exploitation will allow attacker to gain escalated privileges and cause a stack-based buffer overflow. Affected Software/OS: IBM Db2 version 9.1.x, 9.5.x before FP9, 9.7.x before FP7, 9.8.x before FP5 and 10.1.x before FP1 on Linux. Solution: Apply the appropriate fix CVSS Score: 7.2 CVSS Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2013-3475 AIX APAR: IC92463 http://www-01.ibm.com/support/docview.wss?uid=swg1IC92463 AIX APAR: IC92495 http://www-01.ibm.com/support/docview.wss?uid=swg1IC92495 AIX APAR: IC92496 http://www-01.ibm.com/support/docview.wss?uid=swg1IC92496 AIX APAR: IC92498 http://www-01.ibm.com/support/docview.wss?uid=swg1IC92498 BugTraq ID: 60255 http://www.securityfocus.com/bid/60255 http://secunia.com/advisories/52663 http://secunia.com/advisories/53704 XForce ISS Database: ibm-db2-cve20133475-bo(84358) https://exchange.xforce.ibmcloud.com/vulnerabilities/84358
Copyright	Copyright (C) 2013 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.