Stack-based Buffer Overflow in IBM DB2 Administration Server
CVE-2007-5758

Currently unrated

Key Information:

Vendor: IBM
Status: Db2 Universal Database
Vendor: CVE Published:; 16 April 2008

Summary

The vulnerability involves a stack-based buffer overflow in the DB2 Administration Server's component, db2dasrrm. It arises when local users exploit a long DASPROF environment variable, potentially allowing them to execute arbitrary code. This scenario impacts IBM DB2 Universal Database versions prior to specified fix packs, exposing systems to serious security risks.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/41847

vdb-entryx_refsource_XF

http://www.securitytracker.com/id?1019853

vdb-entryx_refsource_SECTRACK

http://secunia.com/advisories/29784

third-party-advisoryx_refsource_SECUNIA

Timeline

Vulnerability published
Apr 16, 2008
Vulnerability Reserved
Oct 31, 2007