CVE-2017-1297

Sažetak

IBM DB2 for Linux, UNIX and Windows 9.2, 10.1, 10.5, and 11.1 (includes DB2 Connect Server) is vulnerable to a stack-based buffer overflow, caused by improper bounds checking which could allow a local attacker to execute arbitrary code. IBM X-Force ID: 125159.

Reference

http://www.ibm.com/support/docview.wss?uid=swg22004878
http://www.securityfocus.com/bid/99271
http://www.securitytracker.com/id/1038772
https://exchange.xforce.ibmcloud.com/vulnerabilities/125159
https://www.exploit-db.com/exploits/42260/

CVSS

Base:	4.4
Impact:	6.4
Exploitability:	3.4

Pristup

Vektor	Složenost	Autentikacija
LOCAL	MEDIUM	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	PARTIAL	PARTIAL

CVSS vektor

AV:L/AC:M/Au:N/C:P/I:P/A:P

Zadnje važnije ažuriranje

12-08-2017 - 01:29

Objavljeno

27-06-2017 - 16:29