• Product Information
• Security Products Overview
• Juniper Networks ISG Series
• IDP Demo
• Product Poster & Z-Card 

Title: IBM DB2 Universal Database Multiple Unspecified Vulnerabilities

Severity: CRITICAL

Description:

IBM DB2 Universal Database Server is a database server designed to run on various platforms including Linux, AIX, Solaris, and Microsoft Windows.

IBM DB2 is prone to multiple vulnerabilities that may allow an attacker to carry out various attacks.
Some of these issues may permit the attacker to completely compromise a vulnerable computer.
Many of the reported issues are unspecified. Some of these may pose a remote threat, while others may be exploited locally.

The following specific issues were identified:

- The authentication routines are vulnerable to an unspecified vulnerability. This issue affects only DB2 8.

- Users may be able to invoke certain methods even if privileges for such operations have been taken away. This issue affects only DB2 8.

- A stack-based buffer-overflow vulnerability affects 'AUTH_LIST_GROUPS_FOR_AUTHID' of Base Service Utilities. This issue affects only DB2 9.1. This issue occurs when the 'sysproc.auth_list_groups_for_authid' function is passed more than approximately 40 bytes as an argument.

- The 'db2licm' and 'db2pd' tools are affected by various unspecified vulnerabilities.

- An unspecified issue affects the privileges associated with executables running as root.

- The 'db2licd', 'OSSEMEMDBG' and 'TRC_LOG_FILE' environment variables are prone to unspecified vulnerabilities. Some of these issues may allow attackers to carry out directory-traversal attacks and create arbitrary files on the system, while other issues may allow local attackers to load libraries with untrusted paths leading to privilege escalation.

- The application is prone to various unspecified temporary-file-handling issues that could lead to symlink attacks. Reports indicate that these issues can allow local attackers to modify arbitrary files with superuser privileges. Successful attacks may allow attackers to completely compromise a vulnerable computer.

- Instance and FMP startup are prone to unspecified issues.

- A buffer-overflow issue affects 'buildDasPaths'. Attackers can exploit this issue by supplying excessive data through the 'DASPROF' environment variable. This may lead to privilege escalation.

- Unauthorized attackers may create, append to, or overwrite arbitrary files with superuser privileges. This could lead to privilege escalation.

- Unauthorized attackers may create arbitrary directories with superuser privileges. This could lead to privilege escalation.

These issues affect DB2 9.1 and 8 running on all supported platforms.

Affected Products:

• IBM DB2 Universal Database for AIX 8.0 FixPak 13
• IBM DB2 Universal Database for AIX 8.0.0
• IBM DB2 Universal Database for AIX 8.1 FixPak 14
• IBM DB2 Universal Database for AIX 8.1.0
• IBM DB2 Universal Database for AIX 8.1.4
• IBM DB2 Universal Database for AIX 8.1.5
• IBM DB2 Universal Database for AIX 8.1.6
• IBM DB2 Universal Database for AIX 8.1.6 c
• IBM DB2 Universal Database for AIX 8.1.7
• IBM DB2 Universal Database for AIX 8.1.7 b
• IBM DB2 Universal Database for AIX 8.1.8
• IBM DB2 Universal Database for AIX 8.1.8 a
• IBM DB2 Universal Database for AIX 8.1.9
• IBM DB2 Universal Database for AIX 8.1.9 a
• IBM DB2 Universal Database for AIX 8.10.0
• IBM DB2 Universal Database for AIX 8.12.0
• IBM DB2 Universal Database for AIX 8.2 FixPak 7
• IBM DB2 Universal Database for AIX 8.2.0
• IBM DB2 Universal Database for AIX 9.0 Fix Pack 2
• IBM DB2 Universal Database for AIX 9.0.0
• IBM DB2 Universal Database for AIX 9.0.0 Fixpak 1
• IBM DB2 Universal Database for AIX 9.1
• IBM DB2 Universal Database for AIX 9.1 FixPack 2
• IBM DB2 Universal Database for HP-UX 8.0 FixPak 13
• IBM DB2 Universal Database for HP-UX 8.0.0
• IBM DB2 Universal Database for HP-UX 8.1 FixPak 14
• IBM DB2 Universal Database for HP-UX 8.1.0
• IBM DB2 Universal Database for HP-UX 8.1.4
• IBM DB2 Universal Database for HP-UX 8.1.5
• IBM DB2 Universal Database for HP-UX 8.1.6
• IBM DB2 Universal Database for HP-UX 8.1.6 c
• IBM DB2 Universal Database for HP-UX 8.1.7
• IBM DB2 Universal Database for HP-UX 8.1.7 b
• IBM DB2 Universal Database for HP-UX 8.1.8
• IBM DB2 Universal Database for HP-UX 8.1.8 a
• IBM DB2 Universal Database for HP-UX 8.1.9
• IBM DB2 Universal Database for HP-UX 8.1.9 a
• IBM DB2 Universal Database for HP-UX 8.10.0
• IBM DB2 Universal Database for HP-UX 8.12.0
• IBM DB2 Universal Database for HP-UX 8.12.0
• IBM DB2 Universal Database for HP-UX 8.2 FixPak 7
• IBM DB2 Universal Database for HP-UX 8.2.0
• IBM DB2 Universal Database for HP-UX 9.0 Fix Pack 2
• IBM DB2 Universal Database for HP-UX 9.0.0
• IBM DB2 Universal Database for HP-UX 9.0.0 Fixpak 1
• IBM DB2 Universal Database for HP-UX 9.1
• IBM DB2 Universal Database for HP-UX 9.1 FixPack 2
• IBM DB2 Universal Database for Linux 8.0 FixPak 13
• IBM DB2 Universal Database for Linux 8.0.0
• IBM DB2 Universal Database for Linux 8.1 FixPak 14
• IBM DB2 Universal Database for Linux 8.1.0
• IBM DB2 Universal Database for Linux 8.1.4
• IBM DB2 Universal Database for Linux 8.1.5
• IBM DB2 Universal Database for Linux 8.1.6
• IBM DB2 Universal Database for Linux 8.1.6 c
• IBM DB2 Universal Database for Linux 8.1.7
• IBM DB2 Universal Database for Linux 8.1.7 b
• IBM DB2 Universal Database for Linux 8.1.8
• IBM DB2 Universal Database for Linux 8.1.8 a
• IBM DB2 Universal Database for Linux 8.1.9
• IBM DB2 Universal Database for Linux 8.1.9 a
• IBM DB2 Universal Database for Linux 8.10.0
• IBM DB2 Universal Database for Linux 8.12.0
• IBM DB2 Universal Database for Linux 8.12.0
• IBM DB2 Universal Database for Linux 8.2 FixPak 7
• IBM DB2 Universal Database for Linux 8.2.0
• IBM DB2 Universal Database for Linux 9.0 Fix Pack 2
• IBM DB2 Universal Database for Linux 9.0.0
• IBM DB2 Universal Database for Linux 9.0.0 Fixpack 1
• IBM DB2 Universal Database for Linux 9.1
• IBM DB2 Universal Database for Linux 9.1 FixPack 2
• IBM DB2 Universal Database for Solaris 8.0 FixPak 13
• IBM DB2 Universal Database for Solaris 8.0.0
• IBM DB2 Universal Database for Solaris 8.1 FixPak 14
• IBM DB2 Universal Database for Solaris 8.1.0
• IBM DB2 Universal Database for Solaris 8.1.4
• IBM DB2 Universal Database for Solaris 8.1.5
• IBM DB2 Universal Database for Solaris 8.1.6
• IBM DB2 Universal Database for Solaris 8.1.6 c
• IBM DB2 Universal Database for Solaris 8.1.7
• IBM DB2 Universal Database for Solaris 8.1.7 b
• IBM DB2 Universal Database for Solaris 8.1.8
• IBM DB2 Universal Database for Solaris 8.1.8 a
• IBM DB2 Universal Database for Solaris 8.1.9
• IBM DB2 Universal Database for Solaris 8.1.9 a
• IBM DB2 Universal Database for Solaris 8.10.0
• IBM DB2 Universal Database for Solaris 8.12.0
• IBM DB2 Universal Database for Solaris 8.2 FixPak 7
• IBM DB2 Universal Database for Solaris 8.2.0
• IBM DB2 Universal Database for Solaris 9.0 Fix Pack 2
• IBM DB2 Universal Database for Solaris 9.0.0
• IBM DB2 Universal Database for Solaris 9.0.0 Fixpak 1
• IBM DB2 Universal Database for Solaris 9.1
• IBM DB2 Universal Database for Solaris 9.1 FixPack 2
• IBM DB2 Universal Database for Windows 8.0 FixPak 13
• IBM DB2 Universal Database for Windows 8.0.0
• IBM DB2 Universal Database for Windows 8.1 FixPak 14
• IBM DB2 Universal Database for Windows 8.1.0
• IBM DB2 Universal Database for Windows 8.1.4
• IBM DB2 Universal Database for Windows 8.1.5
• IBM DB2 Universal Database for Windows 8.1.6
• IBM DB2 Universal Database for Windows 8.1.6 c
• IBM DB2 Universal Database for Windows 8.1.7
• IBM DB2 Universal Database for Windows 8.1.7 b
• IBM DB2 Universal Database for Windows 8.1.8
• IBM DB2 Universal Database for Windows 8.1.8 a
• IBM DB2 Universal Database for Windows 8.1.9
• IBM DB2 Universal Database for Windows 8.1.9 a
• IBM DB2 Universal Database for Windows 8.10.0
• IBM DB2 Universal Database for Windows 8.12.0
• IBM DB2 Universal Database for Windows 8.2 FixPak 7
• IBM DB2 Universal Database for Windows 8.2.0
• IBM DB2 Universal Database for Windows 9.0 Fix Pack 2
• IBM DB2 Universal Database for Windows 9.1
• IBM DB2 Universal Database for Windows 9.1 FixPack 2

References:

• Application Security, Inc.: IBM DB2 Buffer overflow in sysproc.auth_list_groups_for_authid
• IBM: DB2 Technical Support
• IBM: DB2 UDB Version 8 APARs by FixPak
• IBM: DB2 UDB Version 8 FixPaks and clients
• IBM: DB2 Version 9.1 fix packs and clients
• IBM: DB2 Version 9.1 for Linux, UNIX and Windows APARs by fix pack
• IBM: IY88226: SECURITY: EXECUTE AUTHORITY ON A METHOD MAY PERSIST AFTER REVOKE.
• IBM: IZ01828: SECURITY VULNERABILITY IN AUTH_LIST_GROUPS_FOR_AUTHID.

Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.