Unrated severityNVD Advisory· Published Sep 1, 2004· Updated Jun 16, 2026
CVE-2004-1372
CVE-2004-1372
Description
Multiple stack-based buffer overflows in IBM DB2 7.x and 8.1 allow local users to execute arbitrary code via (1) a long third argument to the rec2xml function or (2) a long filename argument to the generate_distfile procedure.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
5cpe:2.3:a:ibm:db2_universal_database:7.0:*:linux:*:*:*:*:*+ 3 more
- cpe:2.3:a:ibm:db2_universal_database:7.0:*:linux:*:*:*:*:*
- cpe:2.3:a:ibm:db2_universal_database:7.1:*:linux:*:*:*:*:*
- cpe:2.3:a:ibm:db2_universal_database:7.2:*:linux:*:*:*:*:*
- cpe:2.3:a:ibm:db2_universal_database:8.1:*:aix:*:*:*:*:*
Patches
Vulnerability mechanics
References
7- www.ngssoftware.com/advisories/db223122004K.txtnvdPatchVendor Advisory
- www.ngssoftware.com/advisories/db223122004L.txtnvdPatchVendor Advisory
- www.securityfocus.com/bid/11089nvdPatch
- marc.infonvd
- marc.infonvd
- exchange.xforce.ibmcloud.com/vulnerabilities/18663nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/18682nvd
News mentions
0No linked articles in our index yet.