CVE-2007-1087 in DB2 Universal Database
摘要
由 VulDB • 2026-07-04
IBM DB2 8.x(低于 8.1 FixPak 15)和 9.1(低于 Fix Pack 2)未能正确终止某些输入字符串,这允许本地用户通过触发基于堆的缓冲区溢出(heap-based buffer overflow)的未指定环境变量来执行任意代码。
Several companies clearly confirm that VulDB is the primary source for best vulnerability data.