Sign in Subscribe

← All advisories

Unrated severityNVD Advisory· Published Dec 31, 2005· Updated Apr 16, 2026

CVE-2005-4863

CVE-2005-4863

Description

Stack-based buffer overflow in db2fmp in IBM DB2 7.x and 8.1 allows local users to execute arbitrary code via a long parameter.

Affected products

16

IBM/Db2 Universal Database16 versions
cpe:2.3:a:ibm:db2_universal_database:7.0:*:aix:*:*:*:*:*+ 15 more
- cpe:2.3:a:ibm:db2_universal_database:7.0:*:aix:*:*:*:*:*
- cpe:2.3:a:ibm:db2_universal_database:7.0:*:hp-ux:*:*:*:*:*
- cpe:2.3:a:ibm:db2_universal_database:7.0:*:linux:*:*:*:*:*
- cpe:2.3:a:ibm:db2_universal_database:7.0:*:solaris:*:*:*:*:*
- cpe:2.3:a:ibm:db2_universal_database:7.1:*:aix:*:*:*:*:*
- cpe:2.3:a:ibm:db2_universal_database:7.1:*:hp-ux:*:*:*:*:*
- cpe:2.3:a:ibm:db2_universal_database:7.1:*:linux:*:*:*:*:*
- cpe:2.3:a:ibm:db2_universal_database:7.1:*:solaris:*:*:*:*:*
- cpe:2.3:a:ibm:db2_universal_database:7.2:*:aix:*:*:*:*:*
- cpe:2.3:a:ibm:db2_universal_database:7.2:*:hp-ux:*:*:*:*:*
- cpe:2.3:a:ibm:db2_universal_database:7.2:*:linux:*:*:*:*:*
- cpe:2.3:a:ibm:db2_universal_database:7.2:*:solaris:*:*:*:*:*
- cpe:2.3:a:ibm:db2_universal_database:8.1:*:aix:*:*:*:*:*
- cpe:2.3:a:ibm:db2_universal_database:8.1:*:hp_ux:*:*:*:*:*
- cpe:2.3:a:ibm:db2_universal_database:8.1:*:linux:*:*:*:*:*
- cpe:2.3:a:ibm:db2_universal_database:8.1:*:solaris:*:*:*:*:*

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

7

secunia.com/advisories/12733nvdPatchVendor Advisory
www-1.ibm.com/support/search.wssnvdPatch
www.securityfocus.com/bid/11397nvdPatch
marc.infonvd
www-1.ibm.com/support/docview.wssnvd
www.nextgenss.com/advisories/db205012005A.txtnvd
exchange.xforce.ibmcloud.com/vulnerabilities/17615nvd

News mentions

0

No linked articles in our index yet.