IBM DB2 Universal Database Local Privilege Escalation Vulnerability

Friday Jun 24th 2005 by DatabaseJournal.com Staff
Share:

A vulnerability was identified in IBM DB2 Universal Database, which could be exploited by local attackers to obtain elevated privileges.

[From FrSIRT]

A vulnerability was identified in IBM DB2 Universal Database, which could be exploited by local attackers to obtain elevated privileges. This flaw is due to an error when verifying the privilege level of users, which could be exploited by malicious users, with "SELECT" privilege, to insert, update or delete the contents of certain tables, even if they do not hold the required insert, update and/or delete privileges.

The article continues at http://www.frsirt.com/english/advisories/2005/0876

Share:
Home
Mobile Site | Full Site
Copyright 2017 © QuinStreet Inc. All Rights Reserved