CVE-2009-4438

NONECVSS 0.0

0.0

The Query Compiler, Rewrite, and Optimizer component in IBM DB2 9.1 before FP8, 9.5 before FP5, and 9.7 before FP1 does not enforce privilege requirements for access to a (1) sequence or (2) global-variable object, which allows remote authenticated users to make use of data via unspecified vectors.

🔗 References (18)

cve@mitreftp://ftp.software.ibm.com/ps/products/db2/fixes/english-us/aparlist/db2_v95/APARLIST.TXT
cve@mitrehttp://secunia.com/advisories/37759
cve@mitrehttp://www-01.ibm.com/support/docview.wss?uid=swg1IC62543
cve@mitrehttp://www-01.ibm.com/support/docview.wss?uid=swg1IC62583
cve@mitrehttp://www-01.ibm.com/support/docview.wss?uid=swg1IC64852
cve@mitrehttp://www-01.ibm.com/support/docview.wss?uid=swg21293566
cve@mitrehttp://www-01.ibm.com/support/docview.wss?uid=swg21412902
cve@mitrehttp://www.securityfocus.com/bid/37332
cve@mitrehttp://www.vupen.com/english/advisories/2009/3520
af854a3a-2127-422b-91ae-364da2661108ftp://ftp.software.ibm.com/ps/products/db2/fixes/english-us/aparlist/db2_v95/APARLIST.TXT
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/37759
af854a3a-2127-422b-91ae-364da2661108http://www-01.ibm.com/support/docview.wss?uid=swg1IC62543
af854a3a-2127-422b-91ae-364da2661108http://www-01.ibm.com/support/docview.wss?uid=swg1IC62583
af854a3a-2127-422b-91ae-364da2661108http://www-01.ibm.com/support/docview.wss?uid=swg1IC64852
af854a3a-2127-422b-91ae-364da2661108http://www-01.ibm.com/support/docview.wss?uid=swg21293566

Is Your Infrastructure Affected by CVE-2009-4438?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2009-4438

📅 Published

🔄 Last Modified

🔗 References (18)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2009-4438?