Summary
The host is running IBM DB2 and is prone to information disclosure vulnerability.
Impact
Successful exploitation allows remote users to read arbitrary XML files.
Impact Level: Application
Solution
Upgrade to IBM DB2 version 9.7 FP6 or later,
For updates refer to http://www-01.ibm.com/support/docview.wss?uid=swg27007053
Insight
The flaw is caused due an error in the XML feature, which can be exploited to read arbitrary XML files via unknown vectors.
Affected
IBM DB2 version 9.7 before FP6
References
Severity
Classification
-
CVE CVE-2012-0713 -
CVSS Base Score: 3.5
AV:N/AC:M/Au:S/C:P/I:N/A:N
Related Vulnerabilities