October 28, 2003 12:00 AM

Stack Overflow Vulnerability in IBM DB2 Universal Data Base v7.2 for Windows

Ken Pfeil

Windows IT Pro

InstantDoc ID #40647

Reported October 24, 2003 by Application Security, Inc.

VERSIONS AFFECTED

IBM DB2 Universal Database 7.2 for Windows

DESCRIPTION

A stack-overflow vulnerability in DB2 Universal Database 7.2 for Windows can result in the execution of arbitrary code on the vulnerable server. To exploit this vulnerability, an attacker can issue a carefully crafted Invoke command.

VENDOR RESPONSE

IBM has released Fixpak 10a for DB2 v7.2 to fix this vulnerability.

CREDIT

Discovered by Application Security, Inc.

Related Content:

ARTICLE TOOLS

You must log on before posting a comment.

Are you a new visitor? Register Here

SSMS & SSDT 2012 install on XP
I recently attempted to install SSMS 2012 on my XP workstation and it came up with a error that the ...
byte order mark (BOM) issue
hi all , I am having a sp which generates a dat file , as follows \n BEGIN ...
ITF14 barcode generation control for reporting services
ITF14 barcode generation control for reporting services easily add itf14 barcode images to r...
SQL Battleship Game
Here's the classic Battleship game written in TSQL. http://www.stevewint.com/battleship.txt ...

Windows is a trademark of the Microsoft group of companies. Windows IT Pro is used by Penton Media Inc. under license from owner.