IBM DB2 8 < Fix Pack 17 Multiple Vulnerabilities

critical Nessus Plugin ID 34195

Language:

Synopsis

The remote database server is affected by multiple issues.

Description

According to its version, the installation of IBM DB2 8 running on the remote host is affected by multiple issues :

- By sending malicious DB2 UDB v7 client CONNECT/DETACH requests it may be possible to crash the remote DB2 server. (IZ08134)

- Failure to switch the owner of the 'DB2FMP' process may lead to a security vulnerability on Unix / Linux platforms. (IZ20350)

- DAS server code is affected by a buffer overflow vulnerability. (IZ22004)

- Using INSTALL_JAR, it may be possible to create and overwrite critical files on the system. (IZ22142)

- DB2 does not mark inoperative or drop views and triggers if the definer cannot maintain the objects. (IZ22287)

- By sending malicious packets to 'DB2JDS', it may be possible to crash the remote DB2 server. (JR29274)

- While running on Windows 'DB2FMP' runs with OS privileges. (JR30228)

Solution

Apply IBM DB2 UDB version 8 Fix Pack 17 or later.

Plugin Details

Severity: Critical

ID: 34195

File Name: db2_8fp17.nasl

Version: 1.22

Type: remote

Family: Databases

Published: 9/12/2008

Updated: 4/11/2022

Configuration: Enable thorough checks

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 5.9

CVSS v2

Risk Factor: Critical

Base Score: 10

Temporal Score: 7.4

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

CVSS v3

Risk Factor: Critical

Base Score: 9.8

Temporal Score: 8.5

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C

Vulnerability Information

CPE: cpe:/a:ibm:db2

Exploit Ease: No known exploits are available

Reference Information

CVE: CVE-2008-2154, CVE-2008-3856, CVE-2008-3958, CVE-2008-3960, CVE-2008-6820, CVE-2008-6821

BID: 31058, 35408, 35409

CWE: 119, 16, 20, 264

SECUNIA: 31787

Detections

Analytics