CVE-2009-4331
16.12.2009, 18:30
The Install component in IBM DB2 9.5 before FP5 and 9.7 before FP1 configures the High Availability (HA) scripts with incorrect file-permission and authorization settings, which has unknown impact and local attack vectors.Enginsight
| Vendor | Product | Version |
|---|---|---|
| ibm | db2 | 9.5 |
| ibm | db2 | 9.5:fp1 |
| ibm | db2 | 9.5:fp2 |
| ibm | db2 | 9.5:fp2a |
| ibm | db2 | 9.5:fp3 |
| ibm | db2 | 9.5:fp3a |
| ibm | db2 | 9.5:fp3b |
| ibm | db2 | 9.7 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References