CVE-2012-1797

  1. Reconshell
  2. Vulnerabilities (CVE)
  3. CVE-2012-1797
IBM DB2 9.5 uses world-writable permissions for nodes.reg, which has unspecified impact and attack vectors.

10.0 /10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:N/AC:L/Au:N/C:C/I:C/A:C

Exploitability : 10.0 / Impact : 10.0

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References
Link Resource
http://www-01.ibm.com/support/docview.wss?crawler=1&uid=swg1IC79518
http://www-01.ibm.com/support/docview.wss?uid=swg1IC79518
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14922
https://exchange.xforce.ibmcloud.com/vulnerabilities/74326
Advertisement

NeevaHost hosting service
Configurations

Configuration 1 (hide)

cpe:2.3:a:ibm:db2:9.5:*:*:*:*:*:*:*
Information

Published : 2012-03-20 13:55

Updated : 2018-01-09 18:29

NVD link : CVE-2012-1797

Mitre link : CVE-2012-1797

JSON object : View

CWE
CWE-264

Permissions, Privileges, and Access Controls

Advertisement

dedicated server usa
Products Affected

ibm

  • db2