CVE Vulnerabilities

CVE-2009-4331

Published: Dec 16, 2009 | Modified: Oct 07, 2010
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.2 HIGH
AV:L/AC:L/Au:N/C:C/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu

The Install component in IBM DB2 9.5 before FP5 and 9.7 before FP1 configures the High Availability (HA) scripts with incorrect file-permission and authorization settings, which has unknown impact and local attack vectors.

Affected Software

Name Vendor Start Version End Version
Db2 Ibm 9.5 9.5
Db2 Ibm 9.5 9.5
Db2 Ibm 9.5 9.5
Db2 Ibm 9.5 9.5
Db2 Ibm 9.5 9.5
Db2 Ibm 9.7 9.7
Db2 Ibm 9.5 9.5
Db2 Ibm 9.5 9.5

References