CVE-2012-0711

Integer signedness error in the db2dasrrm process in the DB2 Administration Server (DAS) in IBM DB2 9.1 through FP11, 9.5 before FP9, and 9.7 through FP5 on UNIX platforms allows remote attackers to execute arbitrary code via a crafted request that triggers a heap-based buffer overflow.
Severity
UNKNOWN
AV:N/AC:L/Au:N/C:P/I:P/A:P
Atk. Vector
NETWORK
Atk. Complexity
LOW
Base Score
CVSS 3.x
EPSS Score
Percentile: 96%
VendorProductVersion
ibmdb2
9.1
ibmdb2
9.1
ibmdb2
9.1
ibmdb2
9.1
ibmdb2
9.1
ibmdb2
9.1
ibmdb2
9.1
ibmdb2
9.1
ibmdb2
9.1
ibmdb2
9.1
ibmdb2
9.1
ibmdb2
9.1
ibmdb2
9.1
ibmdb2
9.1
ibmdb2
9.1
ibmdb2
9.1
ibmdb2
9.1
ibmdb2
9.5
ibmdb2
9.5
ibmdb2
9.5
ibmdb2
9.5
ibmdb2
9.5
ibmdb2
9.5
ibmdb2
9.5
ibmdb2
9.5
ibmdb2
9.5
ibmdb2
9.5
ibmdb2
9.5
ibmdb2
9.5
ibmdb2
9.5
ibmdb2
9.5
ibmdb2
9.7
ibmdb2
9.7
ibmdb2
9.7
ibmdb2
9.7
ibmdb2
9.7
ibmdb2
9.7
ibmdb2
9.7
𝑥
= Vulnerable software versions
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
db2exc
zesty
dne
yakkety
dne
xenial
dne
wily
dne
vivid
dne
utopic
dne
trusty
dne
saucy
dne
raring
dne
quantal
dne
precise
ignored
oneiric
dne
natty
dne
maverick
dne
lucid
ignored
hardy
ignored
Common Weakness Enumeration