CVE-2017-1105

EPSS 0.07%
Veröffentlicht 27.06.2017 16:29:00
Zuletzt bearbeitet 20.04.2025 01:37:25
Quelle psirt@us.ibm.com
Teams Watchlist Login
Unerledigt Login

IBM DB2 for Linux, UNIX and Windows 9.2, 10.1, 10.5, and 11.1 (includes DB2 Connect Server) is vulnerable to a buffer overflow that could allow a local user to overwrite DB2 files or cause a denial of service. IBM X-Force ID: 120668.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 1 Referenzen 7

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Ibm ≫ Data Server Client Version-

Linux ≫ Linux Kernel Version-
Microsoft ≫ Windows Version-

Ibm ≫ Data Server Driver For Odbc And Cli Version-

Linux ≫ Linux Kernel Version-
Microsoft ≫ Windows Version-

Ibm ≫ Data Server Driver Package Version-

Linux ≫ Linux Kernel Version-
Microsoft ≫ Windows Version-

Ibm ≫ Data Server Runtime Client Version-

Linux ≫ Linux Kernel Version-
Microsoft ≫ Windows Version-

Ibm ≫ Db2 Version9.7 SwEditionadvanced_enterprise

Linux ≫ Linux Kernel Version-
Microsoft ≫ Windows Version-

Ibm ≫ Db2 Version9.7 SwEditionadvanced_workgroup

Linux ≫ Linux Kernel Version-
Microsoft ≫ Windows Version-

Ibm ≫ Db2 Version9.7 SwEditionenterprise

Linux ≫ Linux Kernel Version-
Microsoft ≫ Windows Version-

Ibm ≫ Db2 Version9.7 SwEditionexpress

Linux ≫ Linux Kernel Version-
Microsoft ≫ Windows Version-

Ibm ≫ Db2 Version9.7 SwEditionworkgroup

Linux ≫ Linux Kernel Version-
Microsoft ≫ Windows Version-

Ibm ≫ Db2 Version10.1 SwEditionadvanced_enterprise

Linux ≫ Linux Kernel Version-
Microsoft ≫ Windows Version-

Ibm ≫ Db2 Version10.1 SwEditionadvanced_workgroup

Linux ≫ Linux Kernel Version-
Microsoft ≫ Windows Version-

Ibm ≫ Db2 Version10.1 SwEditionenterprise

Linux ≫ Linux Kernel Version-
Microsoft ≫ Windows Version-

Ibm ≫ Db2 Version10.1 SwEditionexpress

Linux ≫ Linux Kernel Version-
Microsoft ≫ Windows Version-

Ibm ≫ Db2 Version10.1 SwEditionworkgroup

Linux ≫ Linux Kernel Version-
Microsoft ≫ Windows Version-

Ibm ≫ Db2 Version10.5 SwEditionadvanced_enterprise

Linux ≫ Linux Kernel Version-
Microsoft ≫ Windows Version-

Ibm ≫ Db2 Version10.5 SwEditionadvanced_workgroup

Linux ≫ Linux Kernel Version-
Microsoft ≫ Windows Version-

Ibm ≫ Db2 Version10.5 SwEditionenterprise

Linux ≫ Linux Kernel Version-
Microsoft ≫ Windows Version-

Ibm ≫ Db2 Version10.5 SwEditionexpress

Linux ≫ Linux Kernel Version-
Microsoft ≫ Windows Version-

Ibm ≫ Db2 Version10.5 SwEditionworkgroup

Linux ≫ Linux Kernel Version-
Microsoft ≫ Windows Version-

Ibm ≫ Db2 Version11.1 SwEditionadvanced_enterprise

Linux ≫ Linux Kernel Version-
Microsoft ≫ Windows Version-

Ibm ≫ Db2 Version11.1 SwEditionadvanced_workgroup

Linux ≫ Linux Kernel Version-
Microsoft ≫ Windows Version-

Ibm ≫ Db2 Version11.1 SwEditionenterprise

Linux ≫ Linux Kernel Version-
Microsoft ≫ Windows Version-

Ibm ≫ Db2 Version11.1 SwEditionexpress

Linux ≫ Linux Kernel Version-
Microsoft ≫ Windows Version-

Ibm ≫ Db2 Version11.1 SwEditionworkgroup

Linux ≫ Linux Kernel Version-
Microsoft ≫ Windows Version-

Ibm ≫ Db2 Connect Version9.7 SwEditionapplication_server

Linux ≫ Linux Kernel Version-
Microsoft ≫ Windows Version-

Ibm ≫ Db2 Connect Version9.7 SwEditionenterprise

Linux ≫ Linux Kernel Version-
Microsoft ≫ Windows Version-

Ibm ≫ Db2 Connect Version9.7 SwEditionunlimited

Linux ≫ Linux Kernel Version-
Microsoft ≫ Windows Version-

Ibm ≫ Db2 Connect Version10.1 SwEditionapplication_server

Linux ≫ Linux Kernel Version-
Microsoft ≫ Windows Version-

Ibm ≫ Db2 Connect Version10.1 SwEditionenterprise

Linux ≫ Linux Kernel Version-
Microsoft ≫ Windows Version-

Ibm ≫ Db2 Connect Version10.1 SwEditionunlimited

Linux ≫ Linux Kernel Version-
Microsoft ≫ Windows Version-

Ibm ≫ Db2 Connect Version10.5 SwEditionapplication_server

Linux ≫ Linux Kernel Version-
Microsoft ≫ Windows Version-

Ibm ≫ Db2 Connect Version10.5 SwEditionenterprise

Linux ≫ Linux Kernel Version-
Microsoft ≫ Windows Version-

Ibm ≫ Db2 Connect Version10.5 SwEditionunlimited

Linux ≫ Linux Kernel Version-
Microsoft ≫ Windows Version-

Ibm ≫ Db2 Connect Version11.1.0.0 SwEditionapplication_server

Linux ≫ Linux Kernel Version-
Microsoft ≫ Windows Version-

Ibm ≫ Db2 Connect Version11.1.0.0 SwEditionenterprise

Linux ≫ Linux Kernel Version-
Microsoft ≫ Windows Version-

Ibm ≫ Db2 Connect Version11.1.0.0 SwEditionunlimited

Linux ≫ Linux Kernel Version-
Microsoft ≫ Windows Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.07%	0.171

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.1	1.8	5.2	CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H
nvd@nist.gov	3.6	3.9	4.9	AV:L/AC:L/Au:N/C:N/I:P/A:P

CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

http://www.ibm.com/support/docview.wss?uid=swg22003877

Patch

Vendor Advisory

http://www.securityfocus.com/bid/99264

Third Party Advisory

VDB Entry

http://www.securitytracker.com/id/1038773

https://exchange.xforce.ibmcloud.com/vulnerabilities/120668

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2017-1105

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2017-1105

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2017-1105

EUVD