Summary
The host is running DB2 Database Server, which is prone to multiple vulnerabilities.
Impact
Remote exploitation could allow attackers to bypass security restrictions, cause a denial of service or gain elevated privileges.
Impact Level : Application
Solution
Update to Fixpak 17 or later.
ftp://ftp.software.ibm.com/ps/products/db2/fixes/
*****
NOTE : Ignore this warning, if above mentioned patch is already applied.
*****
Insight
The flaws exists due to unspecified errors in processing of - CONNECT/ATTACH requests,
- DB2FMP process and DB2JDS service.
Affected
IBM DB2 version 8 prior to Fixpak 17 on Linux (All).
References
Severity
Classification
-
CVE CVE-2008-2154, CVE-2008-3958, CVE-2008-3960 -
CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P
Related Vulnerabilities