Filtered by vendor Ibm Subscriptions
Filtered by product Db2 Universal Database Subscriptions
Total 67 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2004-0795 1 Ibm 1 Db2 Universal Database 2025-04-03 N/A
DB2 8.1 remote command server (DB2RCMD.EXE) executes the db2rcmdc.exe program as the db2admin administrator, which allows local users to gain privileges via the DB2REMOTECMD named pipe.
CVE-2003-1052 1 Ibm 2 Db2, Db2 Universal Database 2025-04-03 N/A
IBM DB2 7.1 and 8.1 allow the bin user to gain root privileges by modifying the shared libraries that are used in setuid root programs.
CVE-2005-4737 1 Ibm 1 Db2 Universal Database 2025-04-03 N/A
IBM DB2 Universal Database (UDB) 820 before ESE AIX 5765F4100 allows remote authenticated users to cause a denial of service (CPU consumption) by "abnormally" terminating a connection, which prevents db2agents from being properly cleared.
CVE-2005-4736 1 Ibm 1 Db2 Universal Database 2025-04-03 N/A
IBM DB2 Universal Database (UDB) 820 before 8.2 FP10 allows remote authenticated users to cause a denial of service (disk consumption) via a hash join (hsjn) that triggers an infinite loop in sqlri_hsjnFlushBlocks.
CVE-2003-0758 1 Ibm 1 Db2 Universal Database 2025-04-03 N/A
Buffer overflow in db2dart in IBM DB2 Universal Data Base 7.2 before Fixpak 10 allows local users to gain root privileges via a long command line argument.
CVE-2005-4866 1 Ibm 1 Db2 Universal Database 2025-04-03 N/A
Stack-based buffer overflow in JDBC Applet Server in IBM DB2 8.1 allows remote attackers to execute arbitrary by connecting and sending a long username, then disconnecting gracefully and reconnecting and sending a short username and an unexpected db2java.zip version, which causes a null terminator to be removed and leads to the overflow.
CVE-2001-0051 1 Ibm 1 Db2 Universal Database 2025-04-03 N/A
IBM DB2 Universal Database version 6.1 creates an account with a default user name and password, which allows remote attackers to gain access to the database.