1. Home
  2. CVE Database
  3. CVE-2013-3475
HIGH · 7.2

CVE-2013-3475

Stack-based buffer overflow in db2aud in the Audit Facility in IBM DB2 and DB2 Connect 9.1, 9.5, 9.7, 9.8, and 10.1, as used in Smart Analytics System 7600 and other products, allows local users to ga...

Vulnerability Description

Stack-based buffer overflow in db2aud in the Audit Facility in IBM DB2 and DB2 Connect 9.1, 9.5, 9.7, 9.8, and 10.1, as used in Smart Analytics System 7600 and other products, allows local users to gain privileges via unspecified vectors.

CVSS Score

7.2

HIGH

AV:L/AC:L/Au:N/C:C/I:C/A:C
Confidentiality
COMPLETE
Integrity
COMPLETE
Availability
COMPLETE

Affected Products

VendorProductVersions
IbmDb29.1
IbmDb2 Connect9.1
IbmSmart Analytics System 7600-

Related Weaknesses (CWE)

CWE-119

References

FAQ

What is CVE-2013-3475?

CVE-2013-3475 is a vulnerability with a CVSS score of 7.2 (HIGH). Stack-based buffer overflow in db2aud in the Audit Facility in IBM DB2 and DB2 Connect 9.1, 9.5, 9.7, 9.8, and 10.1, as used in Smart Analytics System 7600 and other products, allows local users to ga...

How severe is CVE-2013-3475?

CVE-2013-3475 has been rated HIGH with a CVSS base score of 7.2/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2013-3475?

Check the references section above for vendor advisories and patch information. Affected products include: Ibm Db2, Ibm Db2 Connect, Ibm Smart Analytics System 7600.