CVE-2013-3475
Published Jun 5, 2013
Last updated 6 years ago
Overview
- Description
- Stack-based buffer overflow in db2aud in the Audit Facility in IBM DB2 and DB2 Connect 9.1, 9.5, 9.7, 9.8, and 10.1, as used in Smart Analytics System 7600 and other products, allows local users to gain privileges via unspecified vectors.
- Source
- PSIRT-CNA@flexerasoftware.com
- NVD status
- Modified
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 7.2
- Impact score
- 10
- Exploitability score
- 3.9
- Vector string
- AV:L/AC:L/Au:N/C:C/I:C/A:C
Weaknesses
- nvd@nist.gov
- CWE-119
Evaluator
- Comment
- Per: http://www-01.ibm.com/support/docview.wss?uid=swg21639355 'The following IBM DB2 and DB2 Connect V9.1, V9.5, V9.7 and V10.1 editions running on AIX, Linux, HP and Solaris (this vulnerability is not applicable to DB2 on Windows.).'
- Impact
- -
- Solution
- -
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:ibm:db2:9.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "7B28091A-8772-41DC-9D91-D5359CDDA7A9"
},
{
"criteria": "cpe:2.3:a:ibm:db2:9.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "11ABF7CC-2FA5-4F2D-901A-2D0EF5B8E717"
},
{
"criteria": "cpe:2.3:a:ibm:db2:9.7:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "CE1C4DE6-EB32-4A31-9FAA-D8DA31D8CF05"
},
{
"criteria": "cpe:2.3:a:ibm:db2:9.8:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D72D43DB-9A92-4E12-853B-F5FC9421D5EA"
},
{
"criteria": "cpe:2.3:a:ibm:db2:10.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "2952EB24-A015-4EC7-85E3-88588D0AB15B"
},
{
"criteria": "cpe:2.3:a:ibm:db2_connect:9.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0BA7EE47-766E-4AA5-BD74-152EDBC1E17F"
},
{
"criteria": "cpe:2.3:a:ibm:db2_connect:9.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "4CDD816C-7070-4118-845E-6205FE130A02"
},
{
"criteria": "cpe:2.3:a:ibm:db2_connect:9.7:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "4A8DDC8C-92D4-4078-8C82-9CB27B0DBDD2"
},
{
"criteria": "cpe:2.3:a:ibm:db2_connect:9.8:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A174260C-45A3-4DE3-8B2C-82416196FFF3"
},
{
"criteria": "cpe:2.3:a:ibm:db2_connect:10.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B343CCB4-CE4B-44D2-A04E-69031CD649EA"
},
{
"criteria": "cpe:2.3:h:ibm:smart_analytics_system_7600:-:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "077FE845-5F92-4656-A8E9-A68FD73C9901"
}
],
"operator": "OR"
}
]
}
]