CVE-2015-1883

Sažetak

IBM DB2 9.7 through FP10, 9.8 through FP5, 10.1 before FP5, and 10.5 through FP5 on Linux, UNIX, and Windows allows remote authenticated users to read certain administrative files via crafted use of an automated-maintenance policy stored procedure.

Reference

http://www.securityfocus.com/bid/75946
http://www.securitytracker.com/id/1032881
http://www-01.ibm.com/support/docview.wss?uid=swg1IT08075
http://www-01.ibm.com/support/docview.wss?uid=swg1IT08080
http://www-01.ibm.com/support/docview.wss?uid=swg1IT08085
http://www-01.ibm.com/support/docview.wss?uid=swg1IT08086
http://www-01.ibm.com/support/docview.wss?uid=swg21698308

CVSS

Base:	4.0
Impact:	2.9
Exploitability:	8.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	SINGLE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	NONE	NONE

CVSS vektor

AV:N/AC:L/Au:S/C:P/I:N/A:N

Zadnje važnije ažuriranje

22-09-2017 - 01:29

Objavljeno

20-07-2015 - 01:59