CVE - CVE-2007-5758

CVE-ID
CVE-2007-5758	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
Stack-based buffer overflow in db2dasrrm in the DB2 Administration Server (DAS) in IBM DB2 Universal Database 9.5 before Fix Pack 1, 9.1 before Fix Pack 4a, and 8 before FixPak 16 allows local users to execute arbitrary code via a long DASPROF environment variable.
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
BID:27870 URL:http://www.securityfocus.com/bid/27870 IDEFENSE:20080415 IBM DB2 Universal Database db2dasStartStopFMDaemon Buffer Overflow Vulnerability URL:http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=689 SECTRACK:1019853 URL:http://www.securitytracker.com/id?1019853 SECUNIA:29784 URL:http://secunia.com/advisories/29784 VUPEN:ADV-2008-1237 URL:~~http://www.vupen.com/english/advisories/2008/1237/references~~ (Obsolete source) XF:ibm-db2-db2dasrrm-dasprof-bo(41847) URL:https://exchange.xforce.ibmcloud.com/vulnerabilities/41847
Assigning CNA
MITRE Corporation
Date Record Created
20071031	Disclaimer: The record creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20071031)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is an record on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: CVE Request Web Form (select "Other" from dropdown)