VRDA Feed by JPCERT/CC
  Vulnerability Response Decision Assistance Feed : Information for vulnerability impact analysis
[ about VRDA Feed | JPCERT/CC



 
Vulnerability Analysis Result (Revision No : 1) [ Download XML
JVNDB-2010-002113     ( CVE-2010-3474 | CVE-2010-3474 )
IBM DB2 におけるアクセス制限を回避される脆弱性
http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-002113.html

Original

IBM DB2 は、関数の所有者による権限の損失に依存する関数のドロップまたは無効化を適切に実行しないため、アクセス制限を回避される脆弱性が存在します。 本脆弱性は、CVE-2009-3471 とは異なる脆弱性です。

Translation   (Show)





About This Analysis Information
Analysis Information Provider:
JVN iPedia
First Published:
2010-10-08
Source Information Category:
Advisory, Alert
Last Updated:
2010-10-08




Affected Product Tags
cpe:/a:ibm:db2
 


Vulnerability Analysis Results
[Access Vector]  [?]
Undefined [?]

Local [?]
Adjacent Network [?]
X Network [?]
[Access Complexit]  [?]
Undefined [?]

High [?]
Medium [?]
X Low [?]
[Authentication]  [?]
Undefined [?]

Multiple [?]
Single [?]
X None [?]
[Confidentiality Impact]  [?]
Undefined [?]

X None [?]
Partial [?]
Complete [?]
[Integrity Impact]  [?]
Undefined [?]

None [?]
X Partial [?]
Complete [?]
[Availability Impact]  [?]
Undefined [?]

X None [?]
Partial [?]
Complete [?]
Alternatives
Common Vulnerabilities and Exposures (CVE) CVE-2010-3474




National Vulnerability Database (NVD) CVE-2010-3474








References
IBM Support Document 1446455




IBM Support Document IC68015




ISS X-Force Database 61872




OPEN SOURCE VULNERABILITY DATABASE (OSVDB) 68121




Secunia Advisory SA41444




SecurityFocus 43291




SecurityTracker 1024457




VUPEN Security VUPEN/ADV-2010-2425




共通脆弱性タイプ一覧 (CWE) 認可・権限・アクセス制御 (CWE-264)




Copyright © 2010 JPCERT/CC All Rights Reserved.