Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Stack-based buffer overflow in IBM DB2 Universal Data Base 7.2 before Fixpak 10 and 10a, and 8.1 before Fixpak 2, allows attackers with "Connect" privileges to execute arbitrary code via a LOAD command.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
IBM DB2 安全漏洞
Vulnerability Description
IBM DB2是美国IBM公司的一套关系型数据库管理系统。该系统的执行环境主要有UNIX、Linux、IBMi、z/OS以及Windows服务器版本。 IBM DB2 存在安全漏洞,该漏洞源于DB2处理LOAD命令时缺少充分的边界缓冲区检查,远程攻击者可以利用这个漏洞触发缓冲区溢出,可能以DB2进程权限在系统上执行任意指令。DB2的LOAD命令用于从文件、有名管道、设备中移动数据到DB2表中,攻击者提交特殊构建的LOAD命令,可导致触发缓冲区溢出,精心构建提交数据可能以DB2进程权限在系统上执行任意指令。
CVSS Information
N/A
Vulnerability Type
N/A