Vulnerability CVE-2012-0709

Vulnerability Name:

CVE-2012-0709 (CCN-73493)

Assigned:

2012-03-16

Published:

2012-03-16

Updated:

2017-09-19

Summary:

IBM DB2 9.5 before FP9, 9.7 through FP5, and 9.8 through FP4 does not properly check variables, which allows remote authenticated users to bypass intended restrictions on viewing table data by leveraging the CREATEIN privilege to execute crafted SQL CREATE VARIABLE statements.

CVSS v3 Severity:

3.5 Low (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:N)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): Low User Interaction (UI): Required
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): Low Integrity (I): None Availibility (A): None

CVSS v2 Severity:

4.0 Medium (CVSS v2 Vector: AV:N/AC:L/Au:S/C:P/I:N/A:N)
3.5 Low (Temporal CVSS v2 Vector: AV:N/AC:L/Au:S/C:P/I:N/A:N/E:H/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Authentication (Au): Single_Instance
Impact Metrics:	Confidentiality (C): Partial Integrity (I): None Availibility (A): None

4.0 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:S/C:P/I:N/A:N)
3.5 Low (CCN Temporal CVSS v2 Vector: AV:N/AC:L/Au:S/C:P/I:N/A:N/E:H/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): Single_Instance
Impact Metrics:	Confidentiality (C): Partial Integrity (I): None Availibility (A): None

Vulnerability Type:

CWE-20

Vulnerability Consequences:

Bypass Security

References:

Source: MITRE
Type: CNA
CVE-2012-0709

Source: CCN
Type: SA48279
IBM DB2 Multiple Vulnerabilities

Source: AIXAPAR
Type: UNKNOWN
IC81387

Source: AIXAPAR
Type: UNKNOWN
IC81390

Source: AIXAPAR
Type: UNKNOWN
IC81836

Source: CCN
Type: IBM Security Bulletin 1588100
Security Bulletin: Unauthorized Access to Table Vulnerability in DB2 (CVE-2012-0709)

Source: CONFIRM
Type: Vendor Advisory
http://www-01.ibm.com/support/docview.wss?uid=swg21588100

Source: CCN
Type: OSVDB ID: 79846
IBM DB2 Authorization Checks Table Information Disclosure

Source: CCN
Type: BID-52326
IBM DB2 Multiple Security Vulnerabilities

Source: XF
Type: UNKNOWN
db2-createvariable-security-bypass(73493)

Source: XF
Type: UNKNOWN
db2-createvariable-security-bypass(73493)

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:15004

Vulnerable Configuration:

Configuration 1:

cpe:/a:ibm:db2:9.5:-:*:*:*:*:*:*

OR cpe:/a:ibm:db2:9.5:fp1:*:*:*:*:*:*

OR cpe:/a:ibm:db2:9.5:fp2:*:*:*:*:*:*

OR cpe:/a:ibm:db2:9.5:fp2a:*:*:*:*:*:*

OR cpe:/a:ibm:db2:9.5:fp3:*:*:*:*:*:*

OR cpe:/a:ibm:db2:9.5:fp3a:*:*:*:*:*:*

OR cpe:/a:ibm:db2:9.5:fp3b:*:*:*:*:*:*

OR cpe:/a:ibm:db2:9.5:fp4:*:*:*:*:*:*

OR cpe:/a:ibm:db2:9.5:fp4a:*:*:*:*:*:*

OR cpe:/a:ibm:db2:9.5:fp5:*:*:*:*:*:*

OR cpe:/a:ibm:db2:9.5:fp6:*:*:*:*:*:*

OR cpe:/a:ibm:db2:9.5:fp6a:*:*:*:*:*:*

OR cpe:/a:ibm:db2:9.5:fp7:*:*:*:*:*:*

OR cpe:/a:ibm:db2:9.5:fp8:*:*:*:*:*:*

OR cpe:/a:ibm:db2:9.7:*:*:*:*:*:*:*

OR cpe:/a:ibm:db2:9.7:fp1:*:*:*:*:*:*

OR cpe:/a:ibm:db2:9.7:fp2:*:*:*:*:*:*

OR cpe:/a:ibm:db2:9.7:fp3:*:*:*:*:*:*

OR cpe:/a:ibm:db2:9.7:fp3a:*:*:*:*:*:*

OR cpe:/a:ibm:db2:9.7:fp4:*:*:*:*:*:*

OR cpe:/a:ibm:db2:9.7:fp5:*:*:*:*:*:*

OR cpe:/a:ibm:db2:9.8:*:*:*:*:*:*:*

OR cpe:/a:ibm:db2:9.8:fp3:*:*:*:*:*:*

OR cpe:/a:ibm:db2:9.8:fp4:*:*:*:*:*:*

Configuration CCN 1:

cpe:/a:ibm:db2_universal_database:9.0:*:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.mitre.oval:def:15004	V	IBM DB2 9.5 before FP9, 9.7 through FP5, and 9.8 through FP4 does not properly check variables, which allows remote authenticated users to bypass intended restrictions on viewing table data by leveraging the CREATEIN privilege to execute crafted SQL CREATE VARIABLE statements.	2013-07-29
oval:com.ubuntu.precise:def:20120709000	V	CVE-2012-0709 on Ubuntu 12.04 LTS (precise) - medium.	2012-03-20

BACK