Stack Overflow Vulnerability in IBM DB2 Universal Data Base v7.2 for Windows

Email this Article

Printer-Friendly

View Reader Comments

[October 28, 2003]
Stack Overflow Vulnerability in IBM DB2 Universal Data Base v7.2 for Windows
By: Ken Pfeil
Discoveries
InstantDoc #40647
Web Exclusive from Windows IT Pro

Reported October 24, 2003 by Application Security, Inc.

VERSIONS AFFECTED

IBM DB2 Universal Database 7.2 for Windows

DESCRIPTION

A stack-overflow vulnerability in DB2 Universal Database 7.2 for Windows can result in the execution of arbitrary code on the vulnerable server. To exploit this vulnerability, an attacker can issue a carefully crafted Invoke command.

VENDOR RESPONSE

IBM has released Fixpak 10a for DB2 v7.2 to fix this vulnerability.

CREDIT

Discovered by Application Security, Inc.

End of Article

You must log on before posting a comment.

If you don't have a username & password, please register now.

ADS BY GOOGLE SPONSORED LINKS

Experience no-nonsense monitoring: Download your free trial of Red Gate's new SQL Response now

Order Your SharePoint Fundamentals CD!: Learn how to uncover rich information management capabilities with this free SharePoint CD.

Try Idera’s new SQL admin toolset!: 24 essential desktop tools for managing SQL Server for $495.

Simplify your data management: Affordable multi-database query and design tool-- free trial!

Free Technology Resource Directory Listing: Post your free listing in this comprehensive directory for IT and developer professionals, powered by Windows IT Pro. But hurry! Deadline ends Oct. 9.

FEATURED LINKS

Microsoft BI Conference – Oct. 6-8: Discover best practices and gain product insight from Microsoft’s product experts in the 2nd annual event in Seattle.

SQL Server Connections event returns to Las Vegas Nov 10 - 13: Connections returns to Las Vegas for this exciting event where each attendee will receive SQL Server 2008 standard with 1 CAL. It is co-located with Microsoft ASP.NET, Visual Studio and SharePoint Connections with over 250 in-depth sessions.

PASS Community Summit 2008, Seattle on Nov 18-21: The don’t-miss event for Microsoft SQL Server Professionals. Register now and you’ll enjoy top-notch Microsoft and Community speakers and more.

Ease Your Scripting Pains with the Flexibility of PowerShell!: http://windowsitpro.com/elearning/index.cfm?fuseaction=dynamic&v=5153&p=5185&code=&eventid=29&code=SQLFLINK

	SQL Server Magazine Register Subscribe FAQ for Windows WinInfoNews
	Contact Us / Customer Service Editorial Calendar Media Kit Affiliates / Licensing Technology Resource Directory
	Windows IT Pro Office & SharePoint Pro Windows Dev Pro IT Library Connected Home Windows Excavator SuperSite IT Job Hound ITTV

	Copyright © 2008 Penton Media, Inc. All rights reserved. Terms and Use Privacy Statement Reprints and Licensing

Search

Related Whitepapers

Related Events

Related eBooks

Related Essential Guides

Related Resources

vLabs Links

SQL Job Openings

ADS BY GOOGLE SPONSORED LINKS

FEATURED LINKS