1. Home
  2. CVE Database
  3. CVE-2007-5664
MEDIUM · 6.9

CVE-2007-5664

db2dasrrm in the DB2 Administration Server (DAS) in IBM DB2 Universal Database 9.5 before Fix Pack 1, 9.1 before Fix Pack 4a, and 8 before FixPak 16 allows local users to overwrite arbitrary files via...

Vulnerability Description

db2dasrrm in the DB2 Administration Server (DAS) in IBM DB2 Universal Database 9.5 before Fix Pack 1, 9.1 before Fix Pack 4a, and 8 before FixPak 16 allows local users to overwrite arbitrary files via a symlink attack on files used for initialization.

CVSS Score

6.9

MEDIUM

AV:L/AC:M/Au:N/C:C/I:C/A:C
Confidentiality
COMPLETE
Integrity
COMPLETE
Availability
COMPLETE

Affected Products

VendorProductVersions
IbmDb2 Universal Database8

Related Weaknesses (CWE)

CWE-59

References

FAQ

What is CVE-2007-5664?

CVE-2007-5664 is a vulnerability with a CVSS score of 6.9 (MEDIUM). db2dasrrm in the DB2 Administration Server (DAS) in IBM DB2 Universal Database 9.5 before Fix Pack 1, 9.1 before Fix Pack 4a, and 8 before FixPak 16 allows local users to overwrite arbitrary files via...

How severe is CVE-2007-5664?

CVE-2007-5664 has been rated MEDIUM with a CVSS base score of 6.9/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2007-5664?

Check the references section above for vendor advisories and patch information. Affected products include: Ibm Db2 Universal Database.