CyberSec.Space Logo
Back to CVE Browser

CVE-2007-6051

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0300%
EPSS Percentile5.68th
PublishedNov 20, 2007
Last ModifiedApr 23, 2026

Vulnerability Description

IBM DB2 UDB 9.1 before Fixpak 4 assigns incorrect privileges to the (1) DB2ADMNS and (2) DB2USERS alternative groups, which has unknown impact. NOTE: the vendor description of this issue is too vague to be certain that it is security-related.

Affected Platforms (CPE)

πŸ“¦
Ibm

Db2 Universal Database

<= 9.1

References & Advisories

πŸ”— http://osvdb.org/41011
πŸ”— http://www-1.ibm.com/support/docview.wss?uid=swg1JR26854
πŸ”— http://www-1.ibm.com/support/docview.wss?uid=swg21255607
πŸ”— http://www.securityfocus.com/bid/26450
πŸ”— http://www.vupen.com/english/advisories/2007/3867
πŸ”— http://osvdb.org/41011
πŸ”— http://www-1.ibm.com/support/docview.wss?uid=swg1JR26854
πŸ”— http://www-1.ibm.com/support/docview.wss?uid=swg21255607

Related Vulnerabilities

CVE-2007-367610.0

IBM DB2 Universal Database (UDB) Administration Server (DAS) 8 before Fix Pack 16 and 9 before Fix Pack 4 allows remote attackers ...

CVE-2005-041710.0

Unknown "high risk" vulnerability in DB2 Universal Database 8.1 and earlier has unknown impact and attack vectors. NOTE: due to t...

CVE-2005-47377.5

IBM DB2 Universal Database (UDB) 820 before ESE AIX 5765F4100 allows remote authenticated users to cause a denial of service (CPU ...

CVE-2001-00517.5

IBM DB2 Universal Database version 6.1 creates an account with a default user name and password, which allows remote attackers to ...