CVE-2007-6048

Published: Nov 20, 2007Modified: Apr 23, 2026

10.0

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Exploitability: 10.0 / Impact: 10.0

Source: NVD

Description

IBM DB2 UDB 9.1 before Fixpak 4 uses incorrect permissions on ACLs for DB2NODES.CFG, which has unknown impact and attack vectors. NOTE: the vendor description of this issue is too vague to be certain that it is security-related.

Affected (1)

Products: Ibm: Db2 Universal Database

Ibm

1 product

Db2 Universal Database

Configuration A

1 vulnerable · 3 platform

Vulnerable Software	Affected Versions
Ibm Db2 Universal Database	Up to 9.1

Running on/with	Platform Versions
Linux Linux Kernel	All versions
Microsoft Windows	All versions
Unix Unix	All versions

Related CWEs

CWE-264

References (12)

http://osvdb.org/41017

Source: cve@mitre.org

http://secunia.com/advisories/27667

Source: cve@mitre.org

PatchVendor Advisory

http://www-1.ibm.com/support/docview.wss?uid=swg1JR26989

Source: cve@mitre.org

http://www-1.ibm.com/support/docview.wss?uid=swg21255607

Source: cve@mitre.org

http://www.securityfocus.com/bid/26450

Source: cve@mitre.org

Patch

http://www.vupen.com/english/advisories/2007/3867

Source: cve@mitre.org

http://osvdb.org/41017