CVE-2007-4276
published 2007-08-18CVE-2007-4276: Stack-based buffer overflow in IBM DB2 UDB 8 before Fixpak 15 and 9.1 before Fixpak 3 allows attackers to execute arbitrary code via a long DASPROF and…
medium6.9CVSS 3.1
AVLACMAuNCCICAC
Stack-based buffer overflow in IBM DB2 UDB 8 before Fixpak 15 and 9.1 before Fixpak 3 allows attackers to execute arbitrary code via a long DASPROF and possibly other environment variables, which are copied into the buildDasPaths buffer.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| ibm | db2_universal_database | <= 8.0 | — |
| ibm | db2_universal_database | <= 9.1 | — |