Detections
Analytics

CVE-2014-3094

high

Description

Stack-based buffer overflow in IBM DB2 9.7 through FP9a, 9.8 through FP5, 10.1 through FP4, and 10.5 before FP4 on Linux, UNIX, and Windows allows remote authenticated users to execute arbitrary code via a crafted ALTER MODULE statement.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/94260

http://www.securityfocus.com/bid/69550

http://www-01.ibm.com/support/docview.wss?uid=swg21683296

http://www-01.ibm.com/support/docview.wss?uid=swg21681631

http://www-01.ibm.com/support/docview.wss?uid=swg1IT02594

http://www-01.ibm.com/support/docview.wss?uid=swg1IT02593

http://www-01.ibm.com/support/docview.wss?uid=swg1IT02592

http://www-01.ibm.com/support/docview.wss?uid=swg1IT02291

http://secunia.com/advisories/60845

http://secunia.com/advisories/58616

Details

Source: Mitre, NVD

Published: 2014-09-04

Updated: 2024-11-21

Risk Information

CVSS v2

Base Score: 8.5

Vector: CVSS2#AV:N/AC:M/Au:S/C:C/I:C/A:C

Severity: High

CVSS v3

Base Score: 8.8

Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Severity: High