CVE-2008-3852

Unspecified vulnerability in the CLR stored procedure deployment from IBM Database Add-Ins for Visual Studio in the Visual Studio Net component in IBM DB2 9.1 before Fixpak 5 and 9.5 before Fixpak 2 allows remote authenticated users to execute arbitrary code via unknown vectors.
References
Link Resource
http://secunia.com/advisories/30558 Vendor Advisory
http://secunia.com/advisories/31635 Vendor Advisory
http://www-1.ibm.com/support/docview.wss?uid=swg1JR28431 Vendor Advisory
http://www-1.ibm.com/support/docview.wss?uid=swg1JR28432 Vendor Advisory
http://www-1.ibm.com/support/docview.wss?uid=swg21255607
http://www-1.ibm.com/support/docview.wss?uid=swg21293566
http://www.securityfocus.com/archive/1/496405/100/0/threaded
http://www.securityfocus.com/bid/29601
http://www.securitytracker.com/id?1020761
http://www.vupen.com/english/advisories/2008/1769 Vendor Advisory
http://www.vupen.com/english/advisories/2008/2445 Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/42927
https://exchange.xforce.ibmcloud.com/vulnerabilities/44697
http://secunia.com/advisories/30558 Vendor Advisory
http://secunia.com/advisories/31635 Vendor Advisory
http://www-1.ibm.com/support/docview.wss?uid=swg1JR28431 Vendor Advisory
http://www-1.ibm.com/support/docview.wss?uid=swg1JR28432 Vendor Advisory
http://www-1.ibm.com/support/docview.wss?uid=swg21255607
http://www-1.ibm.com/support/docview.wss?uid=swg21293566
http://www.securityfocus.com/archive/1/496405/100/0/threaded
http://www.securityfocus.com/bid/29601
http://www.securitytracker.com/id?1020761
http://www.vupen.com/english/advisories/2008/1769 Vendor Advisory
http://www.vupen.com/english/advisories/2008/2445 Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/42927
https://exchange.xforce.ibmcloud.com/vulnerabilities/44697
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:ibm:db2_universal_database:*:fp4a:aix:*:*:*:*:*
cpe:2.3:a:ibm:db2_universal_database:*:fp4a:hp-ux:*:*:*:*:*
cpe:2.3:a:ibm:db2_universal_database:*:fp4a:linux:*:*:*:*:*
cpe:2.3:a:ibm:db2_universal_database:*:fp4a:solaris:*:*:*:*:*
cpe:2.3:a:ibm:db2_universal_database:*:fp4a:windows:*:*:*:*:*
cpe:2.3:a:ibm:db2_universal_database:*:fp1:aix:*:*:*:*:*
cpe:2.3:a:ibm:db2_universal_database:*:fp1:hp-ux:*:*:*:*:*
cpe:2.3:a:ibm:db2_universal_database:*:fp1:linux:*:*:*:*:*
cpe:2.3:a:ibm:db2_universal_database:*:fp1:solaris:*:*:*:*:*
cpe:2.3:a:ibm:db2_universal_database:*:fp1:windows:*:*:*:*:*
cpe:2.3:a:ibm:db2_universal_database:9.1:*:aix:*:*:*:*:*
cpe:2.3:a:ibm:db2_universal_database:9.1:*:hp-ux:*:*:*:*:*
cpe:2.3:a:ibm:db2_universal_database:9.1:*:linux:*:*:*:*:*
cpe:2.3:a:ibm:db2_universal_database:9.1:*:solaris:*:*:*:*:*
cpe:2.3:a:ibm:db2_universal_database:9.1:*:windows:*:*:*:*:*
cpe:2.3:a:ibm:db2_universal_database:9.1:fp2:aix:*:*:*:*:*
cpe:2.3:a:ibm:db2_universal_database:9.1:fp2:hp-ux:*:*:*:*:*
cpe:2.3:a:ibm:db2_universal_database:9.1:fp2:linux:*:*:*:*:*
cpe:2.3:a:ibm:db2_universal_database:9.1:fp2:solaris:*:*:*:*:*
cpe:2.3:a:ibm:db2_universal_database:9.1:fp2:windows:*:*:*:*:*
cpe:2.3:a:ibm:db2_universal_database:9.1:fp3:aix:*:*:*:*:*
cpe:2.3:a:ibm:db2_universal_database:9.1:fp3:hp-ux:*:*:*:*:*
cpe:2.3:a:ibm:db2_universal_database:9.1:fp3:linux:*:*:*:*:*
cpe:2.3:a:ibm:db2_universal_database:9.1:fp3:solaris:*:*:*:*:*
cpe:2.3:a:ibm:db2_universal_database:9.1:fp3:windows:*:*:*:*:*
cpe:2.3:a:ibm:db2_universal_database:9.1:fp4:aix:*:*:*:*:*
cpe:2.3:a:ibm:db2_universal_database:9.1:fp4:hp-ux:*:*:*:*:*
cpe:2.3:a:ibm:db2_universal_database:9.1:fp4:linux:*:*:*:*:*
cpe:2.3:a:ibm:db2_universal_database:9.1:fp4:solaris:*:*:*:*:*
cpe:2.3:a:ibm:db2_universal_database:9.1:fp4:windows:*:*:*:*:*
cpe:2.3:a:ibm:db2_universal_database:9.5:*:aix:*:*:*:*:*
cpe:2.3:a:ibm:db2_universal_database:9.5:*:hp-ux:*:*:*:*:*
cpe:2.3:a:ibm:db2_universal_database:9.5:*:linux:*:*:*:*:*
cpe:2.3:a:ibm:db2_universal_database:9.5:*:solaris:*:*:*:*:*
cpe:2.3:a:ibm:db2_universal_database:9.5:*:windows:*:*:*:*:*

History

21 Nov 2024, 00:50

Type Values Removed Values Added
References () http://secunia.com/advisories/30558 - Vendor Advisory () http://secunia.com/advisories/30558 - Vendor Advisory
References () http://secunia.com/advisories/31635 - Vendor Advisory () http://secunia.com/advisories/31635 - Vendor Advisory
References () http://www-1.ibm.com/support/docview.wss?uid=swg1JR28431 - Vendor Advisory () http://www-1.ibm.com/support/docview.wss?uid=swg1JR28431 - Vendor Advisory
References () http://www-1.ibm.com/support/docview.wss?uid=swg1JR28432 - Vendor Advisory () http://www-1.ibm.com/support/docview.wss?uid=swg1JR28432 - Vendor Advisory
References () http://www-1.ibm.com/support/docview.wss?uid=swg21255607 - () http://www-1.ibm.com/support/docview.wss?uid=swg21255607 -
References () http://www-1.ibm.com/support/docview.wss?uid=swg21293566 - () http://www-1.ibm.com/support/docview.wss?uid=swg21293566 -
References () http://www.securityfocus.com/archive/1/496405/100/0/threaded - () http://www.securityfocus.com/archive/1/496405/100/0/threaded -
References () http://www.securityfocus.com/bid/29601 - () http://www.securityfocus.com/bid/29601 -
References () http://www.securitytracker.com/id?1020761 - () http://www.securitytracker.com/id?1020761 -
References () http://www.vupen.com/english/advisories/2008/1769 - Vendor Advisory () http://www.vupen.com/english/advisories/2008/1769 - Vendor Advisory
References () http://www.vupen.com/english/advisories/2008/2445 - Vendor Advisory () http://www.vupen.com/english/advisories/2008/2445 - Vendor Advisory
References () https://exchange.xforce.ibmcloud.com/vulnerabilities/42927 - () https://exchange.xforce.ibmcloud.com/vulnerabilities/42927 -
References () https://exchange.xforce.ibmcloud.com/vulnerabilities/44697 - () https://exchange.xforce.ibmcloud.com/vulnerabilities/44697 -

Information

Published : 2008-08-28 17:41

Updated : 2024-11-21 00:50


NVD link : CVE-2008-3852

Mitre link : CVE-2008-3852

CVE.ORG link : CVE-2008-3852


JSON object : View

Products Affected

ibm

  • db2_universal_database
CWE
CWE-264

Permissions, Privileges, and Access Controls

NVD-CWE-noinfo