VULHUB ™

IBM DB2 Universal Database is reported prone to multiple remote buffer overflow vulnerabilities. These issues arise because the application does not perform proper boundary checks before copying user-supplied data in to process buffers. An attacker may exploit these issues to execute arbitrary code on a vulnerable computer. The first issue exists in the 'rec2xml' function and the second issue affects the 'generate_distfile' procedure. An attacker may exploit these issues by supplying a large string value to the application. This payload may contain replacement memory addresses and shellcode designed to redirect process execution. If successful, these issues may result in a denial of service condition or allow for arbitrary code execution. As a result the attacker may gain unauthorized access to a vulnerable computer. These issues were originally reported as unspecified vulnerabilities. Due to the availability of new information, this BID is being updated. Individuals BID will be...

IBM DB2 Universal Database is reported prone to multiple remote buffer overflow vulnerabilities. These issues arise because the application does not perform proper boundary checks before copying user-supplied data in to process buffers. An attacker may exploit these issues to execute arbitrary code on a vulnerable computer. The first issue exists in the 'rec2xml' function and the second issue affects the 'generate_distfile' procedure. An attacker may exploit these issues by supplying a large string value to the application. This payload may contain replacement memory addresses and shellcode designed to redirect process execution. If successful, these issues may result in a denial of service condition or allow for arbitrary code execution. As a result the attacker may gain unauthorized access to a vulnerable computer. These issues were originally reported as unspecified vulnerabilities. Due to the availability of new information, this BID is being updated. Individuals BID will be created in the near future.