DB2 Vulnerabilities

How do I report a bug to IBM?


 Date: 21st November 2005
Title: DB2 Everyplace Version 8.2 Fixpak 2
 Type: Patchset
Source: IBM, IBM
Fallout: Fixes some flaws


Date: 3rd November 2005
Title: DB2 Content Manager Version 8.2 Fixpak 10
 Type: Patchset
Source: IBM, IBM
Fallout: Fix a DoS


Date: 18th October 2005
Title: DB2 Version 8 Fixpak 10
 Type: Patchset
Source: IBM, IBM
Fallout: Fix some flaws


Date: 18th October 2005
Title: DB2 Multiple Flaws
 Type: Advisory
Source: Secunia, Secunia
Fallout: DoS, Unauthorized Object Creation


Date: 24th June 2005
Title: DB2 Version 8 Fixpak 9a
 Type: Patchset
Source: IBM, IBM
Fallout: Fix some flaws


Date: 24th June 2005
Title: DB2 Authorization Bypass
 Type: Advisory
Source: Secunia, Secunia
Fallout: Unauthorized Data Manipulation


Date: 5th January 2005
Title: db2fmp buffer overflow
 Type: Advisory
Source: David Litchfield, NGSSoftware
Fallout: Local user can gain root privileges


Date: 5th January 2005
Title: libdb2.so.1 buffer overflow
 Type: Advisory
Source: David Litchfield, NGSSoftware
Fallout: Local user can gain root privileges


Date: 5th January 2005
Title: call buffer overflow
 Type: Advisory
Source: David Litchfield, NGSSoftware
Fallout: Remote user can gain control of the database server


Date: 5th January 2005
Title: JDBC Applet Server buffer overflow
 Type: Advisory
Source: David Litchfield, NGSSoftware
Fallout: Remote attacker can gain control of the database server


Date: 5th January 2005
Title: SATADMIN.SATENCRYPT buffer overflow
 Type: Advisory
Source: David Litchfield, NGSSoftware
Fallout: Remote user can gain control of the database server


Date: 5th January 2005
Title: IBM DB2 Windows Permission Problems
 Type: Advisory
Source: Chris Anley, NGSSoftware
Fallout: Local user can gain privileges


Date: 5th January 2005
Title: to_char and to_date Denial Of Service
 Type: Advisory
Source: Chris Anley, NGSSoftware
Fallout: DoS


Date: 5th January 2005
Title: XML functions overflows
 Type: Advisory
Source: David Litchfield, NGSSoftware
Fallout: Remote user can gain control of the database server


Date: 5th January 2005
Title: XML functions file creation vulnerabilities
 Type: Advisory
Source: David Litchfield, NGSSoftware
Fallout: Remote user can gain control of the database server


Date: 19th October 2004
Title: LC_TYPE Buffer Overflow
 Type: Advisory
Source: David Litchfield, NGSSoftware
Fallout: Remote user can gain control of the database server
 

Copyright © 2001- 2005 databasesecurity.com. All rights reserved.