CVE-2010-3194 Information
Description
The DB2DART program in IBM DB2 9.1 before FP9 9.5 before FP6 and 9.7 before FP2 allows attackers to bypass intended file access restrictions via unspecified vectors related to overwriting files owned by an instance owner.
Reference
ftp://public.dhe.ibm.com/ps/products/db2/fixes/english-us/aparlist/db2_v95/APARLIST.TXT http://secunia.com/advisories/41218 http://www.vupen.com/english/advisories/2010/2225 http://www-01.ibm.com/support/docview.wss?uid=swg1IC65749 http://www-01.ibm.com/support/docview.wss?uid=swg1IC65756 http://www-01.ibm.com/support/docview.wss?uid=swg1IC65762 http://www-01.ibm.com/support/docview.wss?uid=swg21426108 http://www-01.ibm.com/support/docview.wss?uid=swg21432298 https://exchange.xforce.ibmcloud.com/vulnerabilities/61445 https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A13841
Share on: