CVE

Id
27632  
CVE No.
CVE-2007-4275  
Status
Candidate  
Description
Multiple untrusted search path vulnerabilities in IBM DB2 UDB 8 before Fixpak 15 and 9.1 before Fixpak 3 allow local users to gain privileges via certain vectors related to (1) DB2 instance or FMP startup on Linux and Solaris; (2) exec of executables while running as root on non-Windows systems, as demonstrated by AIX; and unspecified vectors involving (3) db2licm and (4) db2pd.  
Phase
Assigned (20070809)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
284376 27632 CVE-2007-4275 IDEFENSE:20070816 IBM DB2 Universal Database Multiple Untrusted Search Path Vulnerabilities  View
284377 27632 CVE-2007-4275 URL:http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=582  View
284378 27632 CVE-2007-4275 CONFIRM:http://www-1.ibm.com/support/docview.wss?uid=swg21255352  View
284379 27632 CVE-2007-4275 CONFIRM:http://www-1.ibm.com/support/docview.wss?uid=swg21255607  View
284380 27632 CVE-2007-4275 AIXAPAR:IY97922  View
284381 27632 CVE-2007-4275 URL:http://www-1.ibm.com/support/docview.wss?uid=swg1IY97922  View
284382 27632 CVE-2007-4275 AIXAPAR:IY97936  View
284383 27632 CVE-2007-4275 URL:http://www-1.ibm.com/support/docview.wss?uid=swg1IY97936  View
284384 27632 CVE-2007-4275 AIXAPAR:IY98176  View
284385 27632 CVE-2007-4275 URL:http://www-1.ibm.com/support/docview.wss?uid=swg1IY98176  View
284386 27632 CVE-2007-4275 AIXAPAR:IY98206  View
284387 27632 CVE-2007-4275 URL:http://www-1.ibm.com/support/docview.wss?uid=swg1IY98206  View
284388 27632 CVE-2007-4275 AIXAPAR:IZ01923  View
284389 27632 CVE-2007-4275 URL:http://www-1.ibm.com/support/docview.wss?uid=swg1IZ01923  View
284390 27632 CVE-2007-4275 AIXAPAR:IZ02067  View
284391 27632 CVE-2007-4275 URL:http://www-1.ibm.com/support/docview.wss?uid=swg1IZ02067  View
284392 27632 CVE-2007-4275 VIM:20070818 Recent DB2 Vulnerabilities  View
284393 27632 CVE-2007-4275 URL:http://www.attrition.org/pipermail/vim/2007-August/001765.html  View
284394 27632 CVE-2007-4275 BID:25339  View
284395 27632 CVE-2007-4275 URL:http://www.securityfocus.com/bid/25339  View
284396 27632 CVE-2007-4275 VUPEN:ADV-2007-2912  View
284397 27632 CVE-2007-4275 URL:http://www.vupen.com/english/advisories/2007/2912  View
284398 27632 CVE-2007-4275 SECTRACK:1018581  View
284399 27632 CVE-2007-4275 URL:http://securitytracker.com/id?1018581  View
284400 27632 CVE-2007-4275 SECUNIA:26471  View
284401 27632 CVE-2007-4275 URL:http://secunia.com/advisories/26471  View
284402 27632 CVE-2007-4275 XF:db2-execs-privilege-escalation(36062)  View
284403 27632 CVE-2007-4275 URL:http://xforce.iss.net/xforce/xfdb/36062  View
284404 27632 CVE-2007-4275 XF:db2-instance-fmp-privilege-escalation(36064)  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
57257 JVNDB-2007-005949 Trend Micro PC-Cillin Internet Security 2007 などで使用されている Trend Micro AntiVirus スキャンエンジンにおけるバッファオーバーフローの脆弱性 Trend Micro PC-Cillin Internet Security 2007 および Tmxpflt.sys で使用されている Trend Micro AntiVirus スキャンエンジンは、\.Tmfilter デバイスに対する脆弱なパーミッション (エブリワン : Write) があるため、バッファオーバーフローの脆弱性が存在します。 CVE-2007-4277 27632 6.6 http://jvndb.jvn.jp/ja/contents/2007/JVNDB-2007-005949.html  View