8.5
CVE-2008-1998
- EPSS 2.5%
- Veröffentlicht 28.04.2008 20:05:00
- Zuletzt bearbeitet 16.06.2026 22:52:54
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
The NNSTAT (aka SYSPROC.NNSTAT) procedure in IBM DB2 8 before FP16, 9.1 before FP4a, and 9.5 before FP1 on Windows allows remote authenticated users to overwrite arbitrary files via the log file parameter.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 2.5% | 0.826 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 8.5 | 6.8 | 10 |
AV:N/AC:M/Au:S/C:C/I:C/A:C
|
http://secunia.com/advisories/29022
http://secunia.com/advisories/29784
http://securityreason.com/securityalert/3840
http://www-1.ibm.com/support/docview.wss?uid=swg1IZ06976
http://www-1.ibm.com/support/docview.wss?uid=swg1IZ06977
http://www-1.ibm.com/support/docview.wss?uid=swg1IZ10776
http://www.appsecinc.com/resources/alerts/db2/2008-03.shtml
http://www.securityfocus.com/archive/1/491073/100/0/threaded
http://www.securityfocus.com/bid/28836
https://exchange.xforce.ibmcloud.com/vulnerabilities/41960