IBM DB2 'NNSTAT' Procedure Arbitrary File Overwrite Vulnerability

Bugtraq ID: 28836
Class: Design Error
CVE: CVE-2008-1998
Remote: No
Local: Yes
Published: Apr 18 2008 12:00AM
Updated: May 07 2015 05:29PM
Credit: Cesar Cerrudo of Application Security Inc
Vulnerable: IBM DB2 Universal Database for Windows 8.0
IBM DB2 Universal Database for Windows 9.5
IBM DB2 Universal Database for Windows 9.1 FixPak 4
IBM DB2 Universal Database for Windows 9.1 FixPak 3
IBM DB2 Universal Database for Windows 9.1 FixPack 2
IBM DB2 Universal Database for Windows 9.1
IBM DB2 Universal Database for Windows 8.1 FixPak 15
IBM DB2 Universal Database for Windows 8.1 FixPak 14
IBM DB2 Universal Database for Windows 8.0 FixPak 13
IBM DB2 Universal Database for Solaris 8.0
IBM DB2 Universal Database for Solaris 9.5
IBM DB2 Universal Database for Solaris 9.1 FixPak 4
IBM DB2 Universal Database for Solaris 9.1 FixPak 3
IBM DB2 Universal Database for Solaris 9.1 FixPack 2
IBM DB2 Universal Database for Solaris 9.1
IBM DB2 Universal Database for Solaris 9.0.0 Fixpak 1
IBM DB2 Universal Database for Solaris 8.0 FixPak 13
IBM DB2 Universal Database for Linux 8.0
IBM DB2 Universal Database for Linux 9.5
IBM DB2 Universal Database for Linux 9.1 FixPak 4
IBM DB2 Universal Database for Linux 9.1 FixPak 3
IBM DB2 Universal Database for Linux 9.1 FixPack 2
IBM DB2 Universal Database for Linux 8.0 FixPak 13
IBM DB2 Universal Database for HP-UX 8.0
IBM DB2 Universal Database for HP-UX 9.5
IBM DB2 Universal Database for HP-UX 9.1 Fixpak 4
IBM DB2 Universal Database for HP-UX 9.1 FixPak 3
IBM DB2 Universal Database for HP-UX 9.1 FixPack 2
IBM DB2 Universal Database for HP-UX 9.1
IBM DB2 Universal Database for HP-UX 8.1 FixPak 15
IBM DB2 Universal Database for HP-UX 8.1 FixPak 14
IBM DB2 Universal Database for HP-UX 8.0 FixPak 13
IBM DB2 Universal Database for AIX 8.0
IBM DB2 Universal Database for AIX 9.5
IBM DB2 Universal Database for AIX 9.1 FixPak 4
IBM DB2 Universal Database for AIX 9.1 FixPak 3
IBM DB2 Universal Database for AIX 9.1 FixPack 2
IBM DB2 Universal Database for AIX 9.1
IBM DB2 Universal Database for AIX 8.0 FixPak 15
IBM DB2 Universal Database for AIX 8.0 FixPak 14
IBM DB2 Universal Database for AIX 8.0 FixPak 13
Not Vulnerable: IBM DB2 Universal Database for Windows 9.5 Fix Pak 1
IBM DB2 Universal Database for Windows 9.1Fix Pak 4a
IBM DB2 Universal Database for Windows 8.0 FixPak 16
IBM DB2 Universal Database for Solaris 9.5 FixPak 1
IBM DB2 Universal Database for Solaris 9.1 FixPak 4a
IBM DB2 Universal Database for Solaris 8.0 FixPak 16
IBM DB2 Universal Database for Linux 9.5 FixPak 1
IBM DB2 Universal Database for Linux 9.1 FixPak 4a
IBM DB2 Universal Database for Linux 8.0 FixPak 16
IBM DB2 Universal Database for HP-UX 9.5 FixPak 1
IBM DB2 Universal Database for HP-UX 9.1 FixPak 4a
IBM DB2 Universal Database for HP-UX 8.0 FixPak 16
IBM DB2 Universal Database for AIX 9.5 FixPak 1
IBM DB2 Universal Database for AIX 9.1 FixPak 4a
IBM DB2 Universal Database for AIX 8.0 FixPak 16


 

Privacy Statement
Copyright 2010, SecurityFocus