Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2017-1105

Опубликовано: 27 июн. 2017
Источник: nvd
CVSS3: 7.1
CVSS2: 3.6
EPSS Низкий

Описание

IBM DB2 for Linux, UNIX and Windows 9.2, 10.1, 10.5, and 11.1 (includes DB2 Connect Server) is vulnerable to a buffer overflow that could allow a local user to overwrite DB2 files or cause a denial of service. IBM X-Force ID: 120668.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одновременно

Одно из

cpe:2.3:a:ibm:data_server_client:-:*:*:*:*:*:*:*
cpe:2.3:a:ibm:data_server_driver_for_odbc_and_cli:-:*:*:*:*:*:*:*
cpe:2.3:a:ibm:data_server_driver_package:-:*:*:*:*:*:*:*
cpe:2.3:a:ibm:data_server_runtime_client:-:*:*:*:*:*:*:*
cpe:2.3:a:ibm:db2:9.7:*:*:*:advanced_enterprise:*:*:*
cpe:2.3:a:ibm:db2:9.7:*:*:*:advanced_workgroup:*:*:*
cpe:2.3:a:ibm:db2:9.7:*:*:*:enterprise:*:*:*
cpe:2.3:a:ibm:db2:9.7:*:*:*:express:*:*:*
cpe:2.3:a:ibm:db2:9.7:*:*:*:workgroup:*:*:*
cpe:2.3:a:ibm:db2:10.1:*:*:*:advanced_enterprise:*:*:*
cpe:2.3:a:ibm:db2:10.1:*:*:*:advanced_workgroup:*:*:*
cpe:2.3:a:ibm:db2:10.1:*:*:*:enterprise:*:*:*
cpe:2.3:a:ibm:db2:10.1:*:*:*:express:*:*:*
cpe:2.3:a:ibm:db2:10.1:*:*:*:workgroup:*:*:*
cpe:2.3:a:ibm:db2:10.5:*:*:*:advanced_enterprise:*:*:*
cpe:2.3:a:ibm:db2:10.5:*:*:*:advanced_workgroup:*:*:*
cpe:2.3:a:ibm:db2:10.5:*:*:*:enterprise:*:*:*
cpe:2.3:a:ibm:db2:10.5:*:*:*:express:*:*:*
cpe:2.3:a:ibm:db2:10.5:*:*:*:workgroup:*:*:*
cpe:2.3:a:ibm:db2:11.1:*:*:*:advanced_enterprise:*:*:*
cpe:2.3:a:ibm:db2:11.1:*:*:*:advanced_workgroup:*:*:*
cpe:2.3:a:ibm:db2:11.1:*:*:*:enterprise:*:*:*
cpe:2.3:a:ibm:db2:11.1:*:*:*:express:*:*:*
cpe:2.3:a:ibm:db2:11.1:*:*:*:workgroup:*:*:*
cpe:2.3:a:ibm:db2_connect:9.7:*:*:*:application_server:*:*:*
cpe:2.3:a:ibm:db2_connect:9.7:*:*:*:enterprise:*:*:*
cpe:2.3:a:ibm:db2_connect:9.7:*:*:*:unlimited:*:*:*
cpe:2.3:a:ibm:db2_connect:10.1:*:*:*:application_server:*:*:*
cpe:2.3:a:ibm:db2_connect:10.1:*:*:*:enterprise:*:*:*
cpe:2.3:a:ibm:db2_connect:10.1:*:*:*:unlimited:*:*:*
cpe:2.3:a:ibm:db2_connect:10.5:*:*:*:application_server:*:*:*
cpe:2.3:a:ibm:db2_connect:10.5:*:*:*:enterprise:*:*:*
cpe:2.3:a:ibm:db2_connect:10.5:*:*:*:unlimited:*:*:*
cpe:2.3:a:ibm:db2_connect:11.1.0.0:*:*:*:application_server:*:*:*
cpe:2.3:a:ibm:db2_connect:11.1.0.0:*:*:*:enterprise:*:*:*
cpe:2.3:a:ibm:db2_connect:11.1.0.0:*:*:*:unlimited:*:*:*

Одно из

cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*

EPSS

Процентиль: 20%
0.00065
Низкий

7.1 High

CVSS3

3.6 Low

CVSS2

Дефекты

CWE-119

Связанные уязвимости

github логотип

GHSA-gr4h-p789-rmqq

CVSS3: 7.1
github
больше 3 лет назад

IBM DB2 for Linux, UNIX and Windows 9.2, 10.1, 10.5, and 11.1 (includes DB2 Connect Server) is vulnerable to a buffer overflow that could allow a local user to overwrite DB2 files or cause a denial of service. IBM X-Force ID: 120668.

EPSS

Процентиль: 20%
0.00065
Низкий

7.1 High

CVSS3

3.6 Low

CVSS2

Дефекты

CWE-119