CVE-2003-0758

Related Files

IBM-DB2-db2licm.c

Posted Sep 26, 2003

Authored by Juan Manuel Pascual Escriba | Site concepcion.upv.es

Local root exploit for IBM DB2 Universal Database version 7.2 for Linux/s390 which makes use of the db2licm binary that is setuid by default.

tags | exploit, local, root

systems | linux

advisories | CVE-2003-0758, CVE-2003-0759

SHA-256 | ccb20c18f85e2c98e30d47ca465bac0c1611eb9129899f18dfd2745dcb29c56e

Download | Favorite | View

core.db2.txt

Posted Sep 18, 2003

Authored by Juan Pablo Martinez Kuhn | Site coresecurity.com

Core Security Technologies Advisory ID: CORE-2003-0531 - IBM DB2 Universal Data Base v7.2 for Linux/s390 has two binaries in a default install which are setuid to root and have owner and group execute capabilities. These binaries are vulnerable to buffer overflow attacks from a local user that is in the same group.

tags | advisory, overflow, local, root

systems | linux

advisories | CVE-2003-0758, CVE-2003-0759

SHA-256 | 230169f15f23404e9986d75dff6bf3eea592ff6e1d121c14056dd29c97fc181c

Download | Favorite | View