Insecure Directory Creation in IBM DB2 UDB 9.1
CVE-2007-6050

Currently unrated

Key Information:

Vendor: IBM
Status: Db2 Universal Database
Vendor: CVE Published:; 20 November 2007

Summary

IBM DB2 UDB 9.1 prior to Fixpak 4 contains an unspecified vulnerability related to the DB2LICD component that allows for the creation of potentially insecure directories. This flaw may expose the system to unknown impacts and attack vectors, highlighting the importance of prompt updates and security patches to secure the environment against potential exploits.

References

http://www-1.ibm.com/support/docview.wss?uid=swg21255607

x_refsource_CONFIRM

http://www-1.ibm.com/support/docview.wss?uid=swg1IZ03881

vendor-advisoryx_refsource_AIXAPAR

http://www.vupen.com/english/advisories/2007/3867

vdb-entryx_refsource_VUPEN

Timeline

Vulnerability published
Nov 20, 2007
Vulnerability Reserved
Nov 20, 2007