Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple untrusted search path vulnerabilities in (1) db2rspgn and (2) kbbacf1 in IBM DB2 Express Edition 9.7, as used in the IBM Tivoli Monitoring for Databases: DB2 Agent, allow local users to gain privileges via a Trojan horse libkbb.so in the current working directory, related to the DT_RPATH ELF header.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
IBM DB2 Express Edition ’libkbb.so‘ 不可信搜索路径漏洞
Vulnerability Description
IBM DB2是美国IBM公司的一套关系型数据库管理系统。该系统的执行环境主要有UNIX、Linux、IBM i、z/OS以及Windows服务器版本。 当用于Databases: DB2 Agent中的IBM Tivoli Monitoring时,IBM DB2 Express Edition 9.7版本中的(1) db2rspgn和(2) kbbacf1中存在多个不受信任的搜索路径漏洞。本地用户可借助当前工作目录中的特洛伊木马libkbb.so提升特权。
CVSS Information
N/A
Vulnerability Type
N/A