Vulnerability Description
IBM DB2 8 before FP18, 9.1 before FP8, and 9.5 before FP4 allows remote authenticated users to bypass intended access restrictions, and update, insert, or delete table rows, via unspecified vectors.
CVSS Score
6.5
MEDIUM
AV:N/AC:L/Au:S/C:P/I:P/A:P
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ibm | Db2 | 8.0 |
Related Weaknesses (CWE)
References
- http://osvdb.org/58478
- http://secunia.com/advisories/36890Vendor Advisory
- http://www-01.ibm.com/support/docview.wss?uid=swg1IZ50074
- http://www-01.ibm.com/support/docview.wss?uid=swg1IZ50078
- http://www-01.ibm.com/support/docview.wss?uid=swg1IZ50079
- http://www-01.ibm.com/support/docview.wss?uid=swg21386689Vendor Advisory
- http://www-01.ibm.com/support/docview.wss?uid=swg21403619
- http://www.securityfocus.com/bid/36540
- http://osvdb.org/58478
- http://secunia.com/advisories/36890Vendor Advisory
- http://www-01.ibm.com/support/docview.wss?uid=swg1IZ50074
- http://www-01.ibm.com/support/docview.wss?uid=swg1IZ50078
- http://www-01.ibm.com/support/docview.wss?uid=swg1IZ50079
- http://www-01.ibm.com/support/docview.wss?uid=swg21386689Vendor Advisory
- http://www-01.ibm.com/support/docview.wss?uid=swg21403619
FAQ
What is CVE-2009-3472?
CVE-2009-3472 is a vulnerability with a CVSS score of 6.5 (MEDIUM). IBM DB2 8 before FP18, 9.1 before FP8, and 9.5 before FP4 allows remote authenticated users to bypass intended access restrictions, and update, insert, or delete table rows, via unspecified vectors.
How severe is CVE-2009-3472?
CVE-2009-3472 has been rated MEDIUM with a CVSS base score of 6.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2009-3472?
Check the references section above for vendor advisories and patch information. Affected products include: Ibm Db2.