CVE-2007-1087 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2007-1087
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2007-1087

Description: IBM DB2 8.x before 8.1 FixPak 15 and 9.1 before Fix Pack 2 does not properly terminate certain input strings, which allows local users to execute arbitrary code via unspecified environment variables that trigger a heap-based buffer overflow.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/32651 VIM http://www.attrition.org/pipermail/vim/2007-August/001765.html OSVDB 40970 IDEFENSE http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=481 BID 22677 AIXAPAR http://www-1.ibm.com/support/docview.wss?uid=swg21255747

Return to the previous page.