Buffer overflow vulnerability in IBM DB2 - CVE-2019-4014| ID: oval:org.secpod.oval:def:60272 | Date: (C)2019-12-27 (M)2022-12-07 |
| Class: VULNERABILITY | Family: windows |
The host is installed with IBM DB2 9.7 before FP11, 10.1 before FP6, 10.5 before FP10 and 11.1 before FP5 and is prone to a buffer overflow vulnerability. A flaw is present in the DB2DART tool in the application which fails to handle unspecified error in the DB2DART tool. Successful exploitation allows an attacker could overwrite arbitrary files owned by the DB2 instance owner.
| Platform: |
| Microsoft Windows Server 2008 |
| Microsoft Windows Server 2008 R2 |
| Microsoft Windows 8.1 |
| Microsoft Windows Server 2012 R2 |
| Microsoft Windows Server 2012 |
| Microsoft Windows 7 |
| Microsoft Windows 10 |
| Microsoft Windows Server 2016 |
| Microsoft Windows Server 2019 |
