DB: IBM DB2 JDBC Applet Server Overflow
This signature detects attempts to exploit a known vulnerability in the IBM DB2 JDBC Applet Server. A successful attack can lead to a buffer overflow and arbitrary remote code execution within the context of the server.
Extended Description
IBM DB2 Universal Database is prone to an unspecified remote code-execution vulnerability. An attacker can exploit this issue to execute arbitrary code in the context of the user running the application. Successful attacks can result in the compromise of the application or can cause denial-of-service conditions. This issue was fixed in fixpak 15 for v8.
Affected Products
Ibm db2_universal_database_for_linux
References
BugTraq: 23890
CVE: CVE-2007-2582
URL: http://www.zerodayinitiative.com/advisories/ZDI-07-056.html
Short Name
DB:DB2:JDBC-OF
Severity
Major
Recommended
False
Recommended Action
Drop
Category
DB
Keywords
Applet CVE-2007-2582 DB2 IBM JDBC Overflow Server bid:23890
Release Date
03/02/2010
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3336
Port
TCP/6789
False Positive
Unknown
Vendors
Ibm
CVSS Score
10.0