Lucene search

[email protected]NVD:CVE-2013-6744

HistoryMay 30, 2014 - 11:55 p.m.

CVE-2013-6744

2014-05-3023:55:02

CWE-264

[email protected]

web.nvd.nist.gov

CVSS2

8.5

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:S/C:C/I:C/A:C

AI Score

6.1

Confidence

Low

EPSS

0.003

Percentile

71.9%

JSON

The Stored Procedure infrastructure in IBM DB2 9.5, 9.7 before FP9a, 10.1 before FP3a, and 10.5 before FP3a on Windows allows remote authenticated users to gain privileges by leveraging the CONNECT privilege and the CREATE_EXTERNAL_ROUTINE authority.

Affected configurations

Nvd

Node

ibmdb2Match9.5

ibmdb2Match9.7

ibmdb2Match9.7.0.1

ibmdb2Match9.7.0.2

ibmdb2Match9.7.0.3

ibmdb2Match9.7.0.4

ibmdb2Match9.7.0.5

ibmdb2Match9.7.0.6

ibmdb2Match9.7.0.7

ibmdb2Match9.7.0.8

ibmdb2Match9.7.0.9

ibmdb2Match10.1

ibmdb2Match10.1.0.1

ibmdb2Match10.1.0.2

ibmdb2Match10.1.0.3

ibmdb2Match10.5

ibmdb2Match10.5.0.1

ibmdb2Match10.5.0.2

AND

microsoftwindows

VendorProductVersionCPE
ibmdb29.5cpe:2.3:a:ibm:db2:9.5:*:*:*:*:*:*:*
ibmdb29.7cpe:2.3:a:ibm:db2:9.7:*:*:*:*:*:*:*
ibmdb29.7.0.1cpe:2.3:a:ibm:db2:9.7.0.1:*:*:*:*:*:*:*
ibmdb29.7.0.2cpe:2.3:a:ibm:db2:9.7.0.2:*:*:*:*:*:*:*
ibmdb29.7.0.3cpe:2.3:a:ibm:db2:9.7.0.3:*:*:*:*:*:*:*
ibmdb29.7.0.4cpe:2.3:a:ibm:db2:9.7.0.4:*:*:*:*:*:*:*
ibmdb29.7.0.5cpe:2.3:a:ibm:db2:9.7.0.5:*:*:*:*:*:*:*
ibmdb29.7.0.6cpe:2.3:a:ibm:db2:9.7.0.6:*:*:*:*:*:*:*
ibmdb29.7.0.7cpe:2.3:a:ibm:db2:9.7.0.7:*:*:*:*:*:*:*
ibmdb29.7.0.8cpe:2.3:a:ibm:db2:9.7.0.8:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
ibm	db2	9.5	cpe:2.3:a:ibm:db2:9.5:::::::*
ibm	db2	9.7	cpe:2.3:a:ibm:db2:9.7:::::::*
ibm	db2	9.7.0.1	cpe:2.3:a:ibm:db2:9.7.0.1:::::::*
ibm	db2	9.7.0.2	cpe:2.3:a:ibm:db2:9.7.0.2:::::::*
ibm	db2	9.7.0.3	cpe:2.3:a:ibm:db2:9.7.0.3:::::::*
ibm	db2	9.7.0.4	cpe:2.3:a:ibm:db2:9.7.0.4:::::::*
ibm	db2	9.7.0.5	cpe:2.3:a:ibm:db2:9.7.0.5:::::::*
ibm	db2	9.7.0.6	cpe:2.3:a:ibm:db2:9.7.0.6:::::::*
ibm	db2	9.7.0.7	cpe:2.3:a:ibm:db2:9.7.0.7:::::::*
ibm	db2	9.7.0.8	cpe:2.3:a:ibm:db2:9.7.0.8:::::::*