| VID |
25143 |
| Severity |
40 |
| Port |
523 |
| Protocol |
TCP |
| Class |
DB |
| Detailed Description |
According to its version, the installation of DB2 9.7 on the remote host is older than Fix Pack 9 and is therefore potentially affected by multiple vulnerabilities :
- The included software, GSKit, contains several errors related to SSL and TLS that could result in denial of service, information disclosure or unauthorized insertion of arbitrary root Certification Authority certificate. (CVE-2012-2190, CVE-2012-2191, CVE-2012-2203 / IC90395)
- A stack-based buffer overflow exists related to db2aud and db2flacc that could allow a local attacker to elevate privileges to that of an instance owner. The db2aud issue does not affect installs on the Windows operating system. (CVE-2013-3475 / IC92495)
- An unspecified error exists that could allow an attacker to gain SELECT, INSERT, UPDATE, or DELETE permissions to database tables. Note that successful exploitation requires the rights EXPLAIN, SQLADM, or DBADM. (CVE-2013-4033 / IC94523)
- An error exists related to the XSLT parser that could allow a null pointer to be dereferenced. (CVE-2013-5466 / IC97470)
- An error exists related to queries containing OLAP specifications that could allow remote, authenticated attackers to close database connections and deactivate the database. (CVE-2013-6717 / IC95641)
* References:
https://www-304.ibm.com/connections/blogs/PSIRT/entry/security_bulletin_executing_a_query_with_an_olap_specification_causes_the_db2_server_to_terminate_database_connections_cve_2013_6717?lang=en_us
http://www-01.ibm.com/support/docview.wss?uid=swg21450666#9
http://www-01.ibm.com/support/docview.wss?uid=swg24036646
* Platforms Affected:
IBM DB2 versions before 9.7 FixPack 9 |
| Recommendation |
Apply the latest IBM DB2 Database Fix Pack (9.7 FixPack 9 or later), available from the IBM Support & downloads Web site at
http://www-01.ibm.com/support/docview.wss?uid=swg24036646 |
| Related URL |
CVE-2012-2190,CVE-2012-2191,CVE-2012-2203,CVE-2013-3475,CVE-2013-4033,CVE-2013-5466,CVE-2013-6717 (CVE) |
| Related URL |
54743,55185,60255,62018,64334,64336 (SecurityFocus) |
| Related URL |
(ISS) |
|
