IBM DB2 Universal Database up to 9.0 Administration Server DAS access control
| CVSS Meta Temp Score | Current Exploit Price (≈) | CTI Interest Score |
|---|---|---|
| 8.8 | $0-$5k | 0.00 |
Summary
A vulnerability classified as problematic was found in IBM DB2 Universal Database up to 9.0. Affected is the function DAS of the component Administration Server. Executing a manipulation can lead to access control.
The identification of this vulnerability is CVE-2008-3855. The attack may be launched remotely. There is no exploit available.
Upgrading the affected component is advised.
Details
A vulnerability has been found in IBM DB2 Universal Database up to 9.0 (Database Software) and classified as critical. This vulnerability affects the function DAS of the component Administration Server. The manipulation with an unknown input leads to a access control vulnerability. The CWE definition for the vulnerability is CWE-264. As an impact it is known to affect confidentiality, integrity, and availability. CVE summarizes:
Unspecified vulnerability in the DB2 Administration Server (DAS) in the Core DAS function component in IBM DB2 9.1 before Fixpak 5 allows local users to gain privileges, aka a "FILE CREATION VULNERABILITY." NOTE: this may be the same as CVE-2007-5664.
The bug was discovered 06/02/2008. The weakness was shared 08/28/2008 by Martin Rakhmanov with Application Security Inc. (Website). The advisory is available at www-1.ibm.com. This vulnerability was named CVE-2008-3855 since 08/28/2008. The exploitation appears to be easy. Local access is required to approach this attack. No form of authentication is required for a successful exploitation. Technical details are known, but there is no available exploit. This vulnerability is assigned to T1068 by the MITRE ATT&CK project.
It is declared as proof-of-concept. The vulnerability was handled as a non-public zero-day exploit for at least 8 days. During that time the estimated underground price was around $25k-$100k. The vulnerability scanner Nessus provides a plugin with the ID 33128 (IBM DB2 < 9 Fix Pack 5 Multiple Vulnerabilities), which helps to determine the existence of the flaw in a target environment. It is assigned to the family Databases and running in the context r.
Upgrading to version 9.1 eliminates this vulnerability. Furthermore it is possible to detect and prevent this kind of attack with TippingPoint and the filter 8789.
The vulnerability is also documented in the databases at X-Force (42932), Tenable (33128), SecurityFocus (BID 29601†), OSVDB (46271†) and Secunia (SA30558†). The entries VDB-3463, VDB-3464, VDB-3462 and VDB-38411 are related to this item. If you want to get best quality of vulnerability data, you may have to visit VulDB.
Product
Type
Vendor
Name
Version
License
Website
- Vendor: https://www.ibm.com/
CPE 2.3
CPE 2.2
CVSSv4
VulDB Vector: 🔍VulDB Reliability: 🔍
CVSSv3
VulDB Meta Base Score: 9.8VulDB Meta Temp Score: 8.8
VulDB Base Score: 9.8
VulDB Temp Score: 8.8
VulDB Vector: 🔍
VulDB Reliability: 🔍
CVSSv2
| AV | AC | Au | C | I | A |
|---|---|---|---|---|---|
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
|---|---|---|---|---|---|
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
VulDB Base Score: 🔍
VulDB Temp Score: 🔍
VulDB Reliability: 🔍
NVD Base Score: 🔍
Exploiting
Class: Access controlCWE: CWE-264
CAPEC: 🔍
ATT&CK: 🔍
Physical: Partially
Local: Yes
Remote: Yes
Availability: 🔍
Status: Proof-of-Concept
EPSS Score: 🔍
EPSS Percentile: 🔍
Price Prediction: 🔍
Current Price Estimation: 🔍
| 0-Day | Unlock | Unlock | Unlock | Unlock |
|---|---|---|---|---|
| Today | Unlock | Unlock | Unlock | Unlock |
Nessus ID: 33128
Nessus Name: IBM DB2 < 9 Fix Pack 5 Multiple Vulnerabilities
Nessus File: 🔍
Nessus Risk: 🔍
Nessus Family: 🔍
Nessus Context: 🔍
Threat Intelligence
Interest: 🔍Active Actors: 🔍
Active APT Groups: 🔍
Countermeasures
Recommended: UpgradeStatus: 🔍
0-Day Time: 🔍
Upgrade: DB2 Universal Database 9.1
TippingPoint: 🔍
Timeline
06/02/2008 🔍06/02/2008 🔍
06/02/2008 🔍
06/10/2008 🔍
08/28/2008 🔍
08/28/2008 🔍
08/28/2008 🔍
10/02/2008 🔍
03/17/2015 🔍
08/17/2019 🔍
Sources
Vendor: ibm.comAdvisory: www-1.ibm.com
Researcher: Martin Rakhmanov
Organization: Application Security Inc.
Status: Not defined
Confirmation: 🔍
CVE: CVE-2008-3855 (🔍)
GCVE (CVE): GCVE-0-2008-3855
GCVE (VulDB): GCVE-100-43834
X-Force: 42932
SecurityFocus: 29601 - IBM DB2 Universal Database Prior to 9.1 Fixpak 5 Multiple Vulnerabilities
Secunia: 30558
OSVDB: 46271 - IBM DB2 admin server privilege escalation
Vulnerability Center: 19630 - IBM DB2 9.1 <Fixpak 5 DAS File Creation Vulnerability Allows Local Privilege Escalation, Medium
Vupen: ADV-2008-1769
See also: 🔍
Entry
Created: 03/17/2015 16:11Updated: 08/17/2019 18:48
Changes: 03/17/2015 16:11 (64), 08/17/2019 18:48 (15)
Complete: 🔍
Cache ID: 216::103
If you want to get best quality of vulnerability data, you may have to visit VulDB.
No comments yet. Languages: en.
Please log in to comment.