CVEブラウザに戻る

CVE-2015-1935

HIGH

8.0

CVSS Severity Score

EPSS Score0.1640%

EPSS Percentile44.97th

Published2015年7月20日

Last Modified2026年5月6日

Vulnerability Description

The scalar-function implementation in IBM DB2 9.7 through FP10, 9.8 through FP5, 10.1 before FP5, and 10.5 through FP5 on Linux, UNIX, and Windows allows remote attackers to cause a denial of service or execute arbitrary code via unspecified vectors.

Affected Platforms (CPE)

📦

Ibm

Db2

= 9.7

📦

Ibm

Db2

= 9.7

📦

Ibm

Db2

= 9.7

📦

Ibm

Db2

= 9.7

📦

Ibm

Db2

= 9.7

📦

Ibm

Db2

= 9.8

📦

Ibm

Db2

= 9.8

📦

Ibm

Db2

= 9.8

📦

Ibm

Db2

= 9.8

📦

Ibm

Db2

= 9.8

📦

Ibm

Db2

= 10.1

📦

Ibm

Db2

= 10.1

📦

Ibm

Db2

= 10.1

📦

Ibm

Db2

= 10.1

📦

Ibm

Db2

= 10.1

📦

Ibm

Db2

= 10.5

📦

Ibm

Db2

= 10.5

📦

Ibm

Db2

= 10.5

📦

Ibm

Db2

= 10.5

📦

Ibm

Db2

= 10.5

References & Advisories

🔗 http://www-01.ibm.com/support/docview.wss?uid=swg1IT08543

🔗 http://www-01.ibm.com/support/docview.wss?uid=swg1IT08656

🔗 http://www-01.ibm.com/support/docview.wss?uid=swg1IT08667

🔗 http://www-01.ibm.com/support/docview.wss?uid=swg1IT08668

🔗 http://www-01.ibm.com/support/docview.wss?uid=swg21902661

🔗 http://www.securityfocus.com/bid/75908

🔗 http://www.securitytracker.com/id/1033063

🔗 http://www-01.ibm.com/support/docview.wss?uid=swg1IT08543

関連する脆弱性情報

CVE-2007-258210.0

Multiple buffer overflows in the DB2 JDBC Applet Server (DB2JDS) service in IBM DB2 9.x and earlier allow remote attackers to (1) ...

CVE-2005-486510.0

Stack-based buffer overflow in call in IBM DB2 7.x and 8.1 allows remote attackers to execute arbitrary code via a long libname.

CVE-2005-041710.0

Unknown "high risk" vulnerability in DB2 Universal Database 8.1 and earlier has unknown impact and attack vectors. NOTE: due to t...

CVE-2007-605110.0

IBM DB2 UDB 9.1 before Fixpak 4 assigns incorrect privileges to the (1) DB2ADMNS and (2) DB2USERS alternative groups, which has un...