Vulnerability CVE-2008-1998

Vulnerability CVE-2008-1998

Published: 2008-04-28 Modified: 2012-02-12

Description:

	Topic	Author	Date
High	IBM DB2 UDB Arbitrary file overwrite in SYSPROC.NNSTAT procedure	Team SHATTER	30.04.2008

Type:

(Permissions, Privileges, and Access Controls)

CVSS Base Score	Impact Subscore	Exploitability Subscore
8.5/10	10/10	6.8/10

Affected software
IBM -> DB2

http://securityreason.com/securityalert/3840

http://www-1.ibm.com/support/docview.wss?uid=swg1IZ06976

http://www-1.ibm.com/support/docview.wss?uid=swg1IZ06977

http://www-1.ibm.com/support/docview.wss?uid=swg1IZ10776

http://www.appsecinc.com/resources/alerts/db2/2008-03.shtml

http://www.securityfocus.com/archive/1/491073/100/0/threaded

http://www.securityfocus.com/bid/28836

https://exchange.xforce.ibmcloud.com/vulnerabilities/41960