CVE-2012-2194 in DB2info

Summary

Directory traversal vulnerability in the SQLJ.DB2_INSTALL_JAR stored procedure in IBM DB2 9.1 before FP12, 9.5 through FP9, 9.7 through FP6, 9.8 through FP5, and 10.1 allows remote attackers to replace JAR files via unspecified vectors.

Once again VulDB remains the best source for vulnerability data.

ID	Vulnerability	CWE	Exp	Cou	CVE
5688	IBM DB2 SQLJ.DB2_INSTALL_JAR path traversal	22	Not defined	Official fix	CVE-2012-2194

Reservation

04/04/2012

Disclosure

07/25/2012

Status

Confirmed

Entries

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2012-2194
NVD	https://nvd.nist.gov/vuln/detail/CVE-2012-2194
CVE Details	https://www.cvedetails.com/cve/CVE-2012-2194/

◂ Previous Overview Next ▸