QID 20258
Date Published: 2022-05-19
QID 20258: IBM DB2 Arbitrary Code Execution Vulnerability (6573293)
DB2 is a family of data management products, including database servers, developed by IBM.
CVE-2022-23852:Expat (aka libexpat) could allow a remote attacker to execute arbitrary code on the system, caused by an integer overflow in the XML_GetBuffer function. By sending a specially-crafted request, an attacker could exploit this vulnerability to execute arbitrary code on the system.
CVE-2022-23990:Expat (aka libexpat) could allow a remote attacker to execute arbitrary code on the system, caused by an integer overflow in the doProlog function. By sending a specially-crafted request, an attacker could exploit this vulnerability to execute arbitrary code on the system.
Affected Versions:
IBM DB2 prior to V9.7 FP11
IBM DB2 prior to V10.1 FP6
IBM DB2 prior to V10.5 FP11
IBM DB2 prior to V11.1.4 FP 7
QID Detection Logic:
Authenticated (DB2):
This QID queries the DB2 server to get the server version and fix pack level and checks to see if it's vulnerable.
Authenticated (Windows): This QID checks for vulnerable version of DB2 on windows OS
attacker could exploit this vulnerability to execute arbitrary code on the system.
Please refer to the following links 6573293
- 6573293 -
www.ibm.com/support/pages/node/6573293
CVEs related to QID 20258
| Advisory ID | Software | Component | Link |
|---|---|---|---|
| 6573293 |
www.ibm.com/support/pages/node/6573293 |