Описание
The NNSTAT (aka SYSPROC.NNSTAT) procedure in IBM DB2 8 before FP16, 9.1 before FP4a, and 9.5 before FP1 on Windows allows remote authenticated users to overwrite arbitrary files via the log file parameter.
The NNSTAT (aka SYSPROC.NNSTAT) procedure in IBM DB2 8 before FP16, 9.1 before FP4a, and 9.5 before FP1 on Windows allows remote authenticated users to overwrite arbitrary files via the log file parameter.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2008-1998
- https://exchange.xforce.ibmcloud.com/vulnerabilities/41960
- http://secunia.com/advisories/29022
- http://secunia.com/advisories/29784
- http://securityreason.com/securityalert/3840
- http://www-1.ibm.com/support/docview.wss?uid=swg1IZ06976
- http://www-1.ibm.com/support/docview.wss?uid=swg1IZ06977
- http://www-1.ibm.com/support/docview.wss?uid=swg1IZ10776
- http://www.appsecinc.com/resources/alerts/db2/2008-03.shtml
- http://www.securityfocus.com/archive/1/491073/100/0/threaded
- http://www.securityfocus.com/bid/28836
EPSS
Процентиль: 83%
0.01931
Низкий
CVE ID
Связанные уязвимости
nvd
почти 18 лет назад
The NNSTAT (aka SYSPROC.NNSTAT) procedure in IBM DB2 8 before FP16, 9.1 before FP4a, and 9.5 before FP1 on Windows allows remote authenticated users to overwrite arbitrary files via the log file parameter.
EPSS
Процентиль: 83%
0.01931
Низкий