Bugtraq mailing list archives

Re: IBM DB2 Remote Command Execution Privilege Upgrade (#NISR09032004)

From: Marc Bejarano <bugtraq () beej org>
Date: Tue, 09 Mar 2004 15:41:21 -0400

At 10:28 3/9/2004, NGSSoftware Insight Security Research wrote:

NGSSoftware Insight Security Research Advisory

Name: IBM DB2 Remote Command Execution Privilege Upgrade
Systems Affected: DB2 8.1 Enterprise Edition on Windows

Fix Information
***************
IDM have included a fix for this problem in Fixpak 5 -http://www-306.ibm.com/cgi-bin/db2www/data/db2/udb/winos2unix/support/v8fphist.d2w/report.The APAR for this specific issue is IY53894 -http://www-306.ibm.com/cgi-bin/db2www/data/db2/udb/winos2unix/support/aparlib.d2w/display_apar_details?aparno=IY53894.


those docs suggest that this affects ALL platforms, not just windows.

marc

Current thread:

IBM DB2 Remote Command Execution Privilege Upgrade (#NISR09032004) NGSSoftware Insight Security Research (Mar 09)
- Re: IBM DB2 Remote Command Execution Privilege Upgrade (#NISR09032004) Marc Bejarano (Mar 10)