IBM DB2 9.7 < FP11 39672 / 10.1 < FP6 39678 / 10.5 < FP10 39688 / 11.1.4 < FP5 39693 / 11.5 < FP0 39711 Multiple Vulnerabilities (UNIX)

high Nessus Plugin ID 134166

Synopsis

The remote database server is affected by multiple vulnerabilities.

Description

According to its version, the installation of IBM DB2 running on the remote host is either 9.7 prior to Fix Pack 11 Special Build 39672, 10.1 prior to Fix Pack 6 Special Build 39678, 10.5 prior to Fix Pack 10 Special Build 39688, or 11.1 prior to 11.1.4 Fix Pack 5 Special Build 39693, 11.5 prior to Fix Pack 0 Special Build 39711. It is, therefore, affected by one or more of the following vulnerabilities:
- An arbitrary code execution vulnerability exists due to incorrect access controls on the fenced execution process. An authenticated, local attacker can exploit this, via specially crafted DB2 commands, to execute arbitrary code as root. (CVE-2019-4057)
- A denial of service (DoS) vulnerability exists due to incorrect handling of specially crafted packets. An unauthenticated, remote attacker can exploit this issue, via a specially crafted packet, to cause the application to stop responding. (CVE-2020-4135)

- A denial of service (DoS) vulnerability exists due to incorrect handling of certain commands. An authenticated, remote attacker can exploit this issue, via specific commands, to cause the application to stop responding.
(CVE-2020-4161)

- A denial of service (DoS) vulnerability exists in the JDBC client due to incorrect handling of certain commands.
An authenticated, remote attacker can exploit this issue, via specific commands, to cause the application to stop responding. (CVE-2020-4200)

- Multiple buffer overflow vulnerabilities exist due to incorrect bounds checking. An authenticated, local attacker can exploit this to execute arbitrary code on the system with root privileges.
(CVE-2020-4204)
- A privilege escalation vulnerability exists due to incorrect handling of certain commands. An authenticated, local attacker can exploit this, via specially crafted DB2 commands, to gain privileged access to the system.
(CVE-2020-4230)

Solution

Apply the appropriate IBM DB2 Fix Pack or Special Build based on the most recent fix pack level for your branch.

See Also

http://www.nessus.org/u?97828fb6

https://www.ibm.com/support/pages/node/2876307

https://www.ibm.com/support/pages/node/2874621

https://www.ibm.com/support/pages/node/2875251

https://www.ibm.com/support/pages/node/2878809

https://www.ibm.com/support/pages/node/880735

Plugin Details

Severity: High

ID: 134166

File Name: db2_115_39711_nix.nasl

Version: 1.9

Type: local

Agent: windows, macosx, unix

Family: Databases

Published: 2/28/2020

Updated: 10/23/2024

Configuration: Enable thorough checks

Supported Sensors: Nessus Agent, Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 5.9

CVSS v2

Risk Factor: High

Base Score: 7.2

Temporal Score: 5.3

Vector: CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C

CVSS Score Source: CVE-2020-4204

CVSS v3

Risk Factor: High

Base Score: 7.8

Temporal Score: 6.8

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C

Vulnerability Information

CPE: cpe:/a:ibm:db2

Required KB Items: installed_sw/DB2 Server

Excluded KB Items: SMB/db2/Installed

Exploit Ease: No known exploits are available

Patch Publication Date: 2/18/2020

Vulnerability Publication Date: 2/18/2020

Reference Information

CVE: CVE-2019-4057, CVE-2020-4135, CVE-2020-4161, CVE-2020-4200, CVE-2020-4204, CVE-2020-4230

IAVB: 2020-B-0008-S, 2020-B-0024-S