Search Results | AttackerKB

Show filters

Topics 23 Users 9,709

Clear All

Disclosure Date

Disclosure Year Disclosure Month

Collection Command and Control Credential Access Defense Evasion Discovery Execution Exfiltration Impact Initial Access Lateral Movement Persistence Privilege Escalation

23 Total Results

Displaying 11-20 of 23

Attacker Value

Unknown

CVE-2019-4154

Disclosure Date: July 01, 2019 (last updated November 27, 2024)

IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, and 11.1 is vulnerable to a buffer overflow, which could allow an authenticated local attacker to execute arbitrary code on the system as root. IBM X-Force ID: 158519.

Attack Vector: Local Privileges: Low User Interaction: None

0

Attacker Value

Unknown

CVE-2019-4014

Disclosure Date: April 03, 2019 (last updated November 27, 2024)

IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, and 11.1 is vulnerable to a buffer overflow, which could allow an authenticated local attacker to execute arbitrary code on the system as root. IBM X-Force ID: 155892.

Attack Vector: Local Privileges: Low User Interaction: None

0

Attacker Value

Unknown

CVE-2018-1936

Disclosure Date: April 03, 2019 (last updated November 27, 2024)

IBM DB2 9.7, 10.1, 10.5, and 11.1 libdb2e.so.1 is vulnerable to a stack based buffer overflow, caused by improper bounds checking which could allow an attacker to execute arbitrary code. IBM X-Force ID: 153316.

0

Attacker Value

Unknown

CVE-2017-1519

Disclosure Date: September 12, 2017 (last updated November 26, 2024)

IBM DB2 10.5 and 11.1 contains a denial of service vulnerability. A remote user can cause disruption of service for DB2 Connect Server setup with a particular configuration. IBM X-Force ID: 129829.

0

Attacker Value

Unknown

CVE-2017-1451

Disclosure Date: September 12, 2017 (last updated November 26, 2024)

IBM DB2 for Linux, UNIX and Windows 9.7, 10,1, 10.5, and 11.1 (includes DB2 Connect Server) could allow a local user with DB2 instance owner privileges to obtain root access. IBM X-Force ID: 128178.

0

Attacker Value

Unknown

CVE-2017-1434

Disclosure Date: September 12, 2017 (last updated November 26, 2024)

IBM DB2 for Linux, UNIX and Windows 11.1 (includes DB2 Connect Server) under unusual circumstances, could expose highly sensitive information in the error log to a local user.

0

Attacker Value

Unknown

CVE-2017-1438

Disclosure Date: September 12, 2017 (last updated November 26, 2024)

IBM DB2 for Linux, UNIX and Windows 9.7, 10.1, 10.5, and 11.1 (includes DB2 Connect Server) could allow a local user with DB2 instance owner privileges to obtain root access. IBM X-Force ID: 128057.

0

Attacker Value

Unknown

CVE-2017-1452

Disclosure Date: September 12, 2017 (last updated November 26, 2024)

IBM DB2 for Linux, UNIX and Windows 9.7, 10,1, 10.5, and 11.1 (includes DB2 Connect Server) could allow a local user to obtain elevated privilege and overwrite DB2 files. IBM X-Force ID: 128180.

0

Attacker Value

Unknown

CVE-2017-1439

Disclosure Date: September 12, 2017 (last updated November 26, 2024)

IBM DB2 for Linux, UNIX and Windows 9.7, 10,1, 10.5, and 11.1 (includes DB2 Connect Server) could allow a local user with DB2 instance owner privileges to obtain root access. IBM X-Force ID: 128058.

0

Attacker Value

Unknown

CVE-2017-1520

Disclosure Date: September 12, 2017 (last updated November 26, 2024)

IBM DB2 9.7, 10,1, 10.5, and 11.1 is vulnerable to an unauthorized command that allows the database to be activated when authentication type is CLIENT. IBM X-Force ID: 129830.

0