Vulnerability Name:

CVE-2007-1228 (CCN-32845)

Assigned:2007-02-22
Published:2007-02-22
Updated:2009-02-11
Summary:IBM DB2 UDB 8.2 before Fixpak 7 (aka fixpack 14), and DB2 9 before Fix Pack 2, on UNIX allows the "fenced" user to access certain unauthorized directories.
CVSS v3 Severity:4.6 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): Low
User Interaction (UI): Required
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): Low
Integrity (I): Low
Availibility (A): None
CVSS v2 Severity:4.4 Medium (CVSS v2 Vector: AV:L/AC:M/Au:S/C:C/I:N/A:N)
3.2 Low (Temporal CVSS v2 Vector: AV:L/AC:M/Au:S/C:C/I:N/A:N/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): Medium
Authentication (Au): Single_Instance
Impact Metrics:Confidentiality (C): Complete
Integrity (I): None
Availibility (A): None
5.5 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:S/C:P/I:P/A:N)
4.0 Medium (CCN Temporal CVSS v2 Vector: AV:N/AC:L/Au:S/C:P/I:P/A:N/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Athentication (Au): Single_Instance
Impact Metrics:Confidentiality (C): Partial
Integrity (I): Partial
Availibility (A): None
Vulnerability Type:CWE-287
Vulnerability Consequences:Bypass Security
References:Source: MITRE
Type: CNA
CVE-2007-1228

Source: CCN
Type: SA24387
IBM DB2 Fenced UserID Directory Access Authentication Bypass

Source: SECUNIA
Type: Vendor Advisory
24387

Source: CCN
Type: SECTRACK ID: 1017731
IBM DB2 Local Fenced Processes Can Access Restricted Directories

Source: AIXAPAR
Type: Vendor Advisory
IY86711

Source: CCN
Type: IBM APAR IY86711
SECURITY: FENCED USERID INCORRECTLY ABLE TO ACCESS DIRECTORIES

Source: AIXAPAR
Type: Vendor Advisory
IY87492

Source: CCN
Type: IBM APAR IY87492
SECURITY: FENCED USERID INCORRECTLY ABLE TO ACCESS DIRECTORIES

Source: CCN
Type: OSVDB ID: 34021
IBM DB2 Fenced User Arbitrary Directory Access

Source: BID
Type: UNKNOWN
22729

Source: CCN
Type: BID-22729
IBM DB2 Fenced UserID Unspecified Authentication Bypass Vulnerability

Source: SECTRACK
Type: UNKNOWN
1017731

Source: XF
Type: UNKNOWN
db2-udb-directory-security-bypass(32845)

Vulnerable Configuration:Configuration 1:
  • cpe:/a:ibm:db2:8.2:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:db2:8.2:fp1:*:*:*:*:*:*
  • OR cpe:/a:ibm:db2:8.2:fp2:*:*:*:*:*:*
  • OR cpe:/a:ibm:db2:8.2:fp3:*:*:*:*:*:*
  • OR cpe:/a:ibm:db2:8.2:fp4:*:*:*:*:*:*
  • OR cpe:/a:ibm:db2:8.2:fp5:*:*:*:*:*:*
  • OR cpe:/a:ibm:db2:8.2:fp6:*:*:*:*:*:*
  • OR cpe:/a:ibm:db2:9.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:db2:9.0:fp1:*:*:*:*:*:*
  • AND
  • cpe:/o:unix:unix:*:*:*:*:*:*:*:*

    • Configuration CCN 1:
  • cpe:/a:ibm:db2_universal_database:8.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:db2_universal_database:9.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:db2_universal_database:8.2:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    BACK
    ibm db2 8.2
    ibm db2 8.2 fp1
    ibm db2 8.2 fp2
    ibm db2 8.2 fp3
    ibm db2 8.2 fp4
    ibm db2 8.2 fp5
    ibm db2 8.2 fp6
    ibm db2 9.0
    ibm db2 9.0 fp1
    unix unix *
    ibm db2 universal database 8.1
    ibm db2 universal database 9.1
    ibm db2 universal database 8.2