Title: IBM DB2 Multiple Command-line Format String Vulnerabilities
Severity: MODERATE
Description:
DB2 is the database implementation maintained and distributed by IBM. It is available for the UNIX, Linux, and Microsoft Windows platforms. The db2govd, db2start, and db2stop database components are typically installed setuid.
Multiple format string vulnerabilities have been discovered within the IBM DB2 database specifically within the aforementioned components. The problems occur due to erroneous usage of format-based functions and could potentially allow an attacker to gain elevated privileges on a local system.
The db2start and db2stop binaries are both prone to a format string bug when handling a basic command-line argument, for example "./dbstart %x". The db2govd binary is prone to the condition when handling parameters passed as part of the 'validate garbage' and 'stop' options.
An attacker could potentially exploit one of these conditions by passing specially calculated format string sequences to a target program. When handled, the program may be controlled in such a way that arbitrary code may be executed. All instructions executed would be run with the privileges of the owner of the specific binary.
Affected Products:
- IBM DB2 Universal Database for Linux 7.0.0
- IBM DB2 Universal Database for Linux 7.1.0
- IBM DB2 Universal Database for Linux 7.2.0
- IBM DB2 Universal Database for Linux 8.0.0
- IBM DB2 Universal Database for Linux 8.1.0
References:
Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.
