CVE-2005-3643IBM DB2 Universal Database vulnerability

3 documents3 sources
Severity
7.5HIGHNVD
EPSS
0.6%
top 31.29%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
IBM DB2 Universal Database
Timeline
PublishedNov 16
Latest updateMay 1

Description

IBM DB2 Database server running on Windows XP with Simple File Sharing enabled, allows remote attackers to bypass authentication and log on to the guest account without supplying a password.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages1 packages

NVDibm/db2_universal_database14 versions+13

🔴Vulnerability Details

2
GHSA
GHSA-f88m-xc68-c424: IBM DB2 Database server running on Windows XP with Simple File Sharing enabled, allows remote attackers to bypass authentication and log on to the gue2022-05-01
CVEList
CVE-2005-3643: IBM DB2 Database server running on Windows XP with Simple File Sharing enabled, allows remote attackers to bypass authentication and log on to the gue2005-11-16
CVE-2005-3643 — IBM vulnerability | cvebase