← voltar
CVE-2009-4333

CVE-2009-4333

EPSS 1.3%
The Relational Data Services component in IBM DB2 9.5 before FP5 allows attackers to obtain the password argument from the SET ENCRYPTION PASSWORD statement via vectors involving the GET SNAPSHOT FOR DYNAMIC SQL command.
Produtos afetados
n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
ftp://ftp.software.ibm.com/ps/products/db2/fixes/english-us/aparlist/db2_v95/APARLIST.TXThttp://secunia.com/advisories/37759http://www-01.ibm.com/support/docview.wss?uid=swg1IZ38819http://www-01.ibm.com/support/docview.wss?uid=swg21293566http://www-01.ibm.com/support/docview.wss?uid=swg21412902http://www.securityfocus.com/bid/37332http://www.vupen.com/english/advisories/2009/3520