CVE-2007-1228

Published: Mar 2, 2007Modified: Apr 23, 2026

4.4

Vector

AV:L/AC:M/Au:S/C:C/I:N/A:N

Exploitability: 2.7 / Impact: 6.9

Source: NVD

Description

IBM DB2 UDB 8.2 before Fixpak 7 (aka fixpack 14), and DB2 9 before Fix Pack 2, on UNIX allows the "fenced" user to access certain unauthorized directories.

Affected (9)

Products: Ibm: Db2

1 product

Configuration A

9 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Ibm Db2	Version 8.2
Ibm Db2	Version 8.2 fp1
Ibm Db2	Version 8.2 fp2
Ibm Db2	Version 8.2 fp3
Ibm Db2	Version 8.2 fp4
Ibm Db2	Version 8.2 fp5
Ibm Db2	Version 8.2 fp6
Ibm Db2	Version 9.0
Ibm Db2	Version 9.0 fp1

Running on/with	Platform Versions
Unix Unix	All versions

Related CWEs

Improper Authentication

When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.

References (10)

http://secunia.com/advisories/24387

Source: cve@mitre.org

Vendor Advisory

http://www-1.ibm.com/support/docview.wss?uid=swg1IY86711

Source: cve@mitre.org

Vendor Advisory

http://www-1.ibm.com/support/docview.wss?uid=swg1IY87492

Source: cve@mitre.org

Vendor Advisory

http://www.securityfocus.com/bid/22729

Source: cve@mitre.org

http://www.securitytracker.com/id?1017731

Source: cve@mitre.org

http://secunia.com/advisories/24387

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://www-1.ibm.com/support/docview.wss?uid=swg1IY86711

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://www-1.ibm.com/support/docview.wss?uid=swg1IY87492

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://www.securityfocus.com/bid/22729

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securitytracker.com/id?1017731

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.