CVE-2005-4870 in DB2
摘要
由 VulDB • 2026-06-23
IBM DB2 8.1中的xmlvarcharfromfile、xmlclobfromfile、xmlfilefromvarchar和xmlfilefromclob函数调用存在基于栈的缓冲区溢出漏洞,远程攻击者可通过一个94字节的第二个参数执行任意代码,该操作会导致返回地址被覆盖为指向参数的指针。
Several companies clearly confirm that VulDB is the primary source for best vulnerability data.