Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

CVE ID:CVE-2011-1846
Description:IBM DB2 9.5 before FP7 and 9.7 before FP4 on Linux, UNIX, and Windows does not properly revoke role membership from groups, which allows remote authenticated users to execute non-DDL statements by leveraging previous inherited possession of a role, a different vulnerability than CVE-2011-0757. NOTE: some of these details are obtained from third party information.
Test IDs: None available
Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2011-1846
AIX APAR: IC71263
http://www-01.ibm.com/support/docview.wss?uid=swg1IC71263
AIX APAR: IC71375
http://www-01.ibm.com/support/docview.wss?uid=swg1IC71375
BugTraq ID: 47525
http://www.securityfocus.com/bid/47525
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14688
http://secunia.com/advisories/44229
http://www.vupen.com/english/advisories/2011/1083
XForce ISS Database: db2-data-services-sec-bypass(66980)
https://exchange.xforce.ibmcloud.com/vulnerabilities/66980




© 1998-2024 E-Soft Inc. All rights reserved.