Lucene search
IbmCVELIST:CVE-2012-0709HistoryMar 20, 2012 - 8:00 p.m.
CVE-2012-0709
2012-03-2020:00:00
ibm
www.cve.org
5
IBM DB2 9.5 before FP9, 9.7 through FP5, and 9.8 through FP4 does not properly check variables, which allows remote authenticated users to bypass intended restrictions on viewing table data by leveraging the CREATEIN privilege to execute crafted SQL CREATE VARIABLE statements.
References
www-01.ibm.com/support/docview.wss?uid=swg1IC81387
www-01.ibm.com/support/docview.wss?uid=swg1IC81390
www-01.ibm.com/support/docview.wss?uid=swg1IC81836
www-01.ibm.com/support/docview.wss?uid=swg21588100
exchange.xforce.ibmcloud.com/vulnerabilities/73493
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15004
Related
ibm
ibm
nvd
nvd
CVE-2012-0709
2012-03-20 20:55:01
ubuntucve
ubuntucve
CVE-2012-0709
2012-03-20 00:00:00
cve
cve
CVE-2012-0709
2012-03-20 20:55:01
prion
prion
Design/Logic Flaw
2012-03-20 20:55:00
openvas
openvas
IBM Db2 XML Feature DoS and CREATE VARIABLE Security Bypass Vulnerabilities
2012-04-03 00:00:00
IBM DB2 XML Feature DoS and CREATE VARIABLE Security Bypass Vulnerabilities
2012-04-03 00:00:00
nessus
nessus
IBM DB2 9.7 < Fix Pack 6 Multiple Vulnerabilities
2012-07-10 00:00:00
DB2 9.5 < Fix Pack 9 Multiple Vulnerabilities
2012-03-08 00:00:00