The host is installed with IBM DB2 9.7 before FP11, 10.1 before FP6, 10.5 before FP11, 11.1 before FP5 and 11.5 and is prone to a DLL search order hijacking vulnerability. A flaw is present in the application which fails to handle unspecified vectors. Successful exploitation allows a local authenticated attacker to execute arbitrary code on the system.