Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2014-0907
HistoryMay 30, 2014 - 11:55 p.m.

CVE-2014-0907

2014-05-3023:55:02
[email protected]
web.nvd.nist.gov
5

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

AI Score

6.4

Confidence

Low

EPSS

0

Percentile

14.2%

JSON

Multiple untrusted search path vulnerabilities in unspecified (1) setuid and (2) setgid programs in IBM DB2 9.5, 9.7 before FP9a, 9.8, 10.1 before FP3a, and 10.5 before FP3a on Linux and UNIX allow local users to gain root privileges via a Trojan horse library.

Affected configurations

Nvd
Node
ibmdb2Match9.5
OR
ibmdb2Match9.7
OR
ibmdb2Match9.7.0.1
OR
ibmdb2Match9.7.0.2
OR
ibmdb2Match9.7.0.3
OR
ibmdb2Match9.7.0.4
OR
ibmdb2Match9.7.0.5
OR
ibmdb2Match9.7.0.6
OR
ibmdb2Match9.7.0.7
OR
ibmdb2Match9.7.0.8
OR
ibmdb2Match9.7.0.9
OR
ibmdb2Match10.1
OR
ibmdb2Match10.1.0.1
OR
ibmdb2Match10.1.0.2
OR
ibmdb2Match10.1.0.3
OR
ibmdb2Match10.5
OR
ibmdb2Match10.5.0.1
OR
ibmdb2Match10.5.0.2
VendorProductVersionCPE
ibmdb29.5cpe:2.3:a:ibm:db2:9.5:*:*:*:*:*:*:*
ibmdb29.7cpe:2.3:a:ibm:db2:9.7:*:*:*:*:*:*:*
ibmdb29.7.0.1cpe:2.3:a:ibm:db2:9.7.0.1:*:*:*:*:*:*:*
ibmdb29.7.0.2cpe:2.3:a:ibm:db2:9.7.0.2:*:*:*:*:*:*:*
ibmdb29.7.0.3cpe:2.3:a:ibm:db2:9.7.0.3:*:*:*:*:*:*:*
ibmdb29.7.0.4cpe:2.3:a:ibm:db2:9.7.0.4:*:*:*:*:*:*:*
ibmdb29.7.0.5cpe:2.3:a:ibm:db2:9.7.0.5:*:*:*:*:*:*:*
ibmdb29.7.0.6cpe:2.3:a:ibm:db2:9.7.0.6:*:*:*:*:*:*:*
ibmdb29.7.0.7cpe:2.3:a:ibm:db2:9.7.0.7:*:*:*:*:*:*:*
ibmdb29.7.0.8cpe:2.3:a:ibm:db2:9.7.0.8:*:*:*:*:*:*:*
Rows per page:
1-10 of 181

References

Related

ibm 8
cvelist 1
openvas 1
securityvulns 2
prion 1
cve 1
nessus 5
ibm
ibm
Security Bulletin: IBM Tivoli Composite Application Manager for Transactions is affected by a Local escalation of privilege vulnerability (CVE-2014-0907)
2018-06-17 14:42:51
Security Bulletin: IBM Systems Director is affected by elevated privileges vulnerability (CVE-2014-0907)
2019-01-30 08:35:01
Security Bulletin: Security vulnerabilities have been identified in IBM DB2 shipped with WebSphere Remote Server (CVE-2014-0907)
2018-06-15 07:00:33
cvelist
cvelist
CVE-2014-0907
2014-05-30 23:00:00
openvas
openvas
IBM Db2 Privilege Escalation Vulnerability (swg21672100)
2017-12-15 00:00:00
securityvulns
securityvulns
CVE-2014-0907 - SetUID/SetGID Programs Allow Privilege Escalation Via Insecure RPATH In IBM DB2
2014-06-14 00:00:00
IBM DB2 privilege escalation
2014-06-14 00:00:00
prion
prion
Design/Logic Flaw
2014-05-30 23:55:00
cve
cve
CVE-2014-0907
2014-05-30 23:55:02
nessus
nessus
IBM DB2 9.5 <= Fix Pack 9 or 10 Multiple Vulnerabilities
2014-06-18 00:00:00
IBM DB2 10.5 < Fix Pack 3a Multiple Vulnerabilities
2014-06-18 00:00:00
IBM DB2 9.7 < Fix Pack 9a Multiple Vulnerabilities
2014-06-18 00:00:00

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

AI Score

6.4

Confidence

Low

EPSS

0

Percentile

14.2%

JSON
Related for NVD:CVE-2014-0907
ibm8cvelist1openvas1securityvulns2prion1cve1nessus5