VYPR
← All advisories
Unrated severityNVD Advisory· Published Dec 31, 2005· Updated Apr 16, 2026

CVE-2005-4864

CVE-2005-4864

Description

Stack-based buffer overflow in libdb2.so in IBM DB2 7.x and 8.1 allows local users to execute arbitrary code via a long DB2LPORT environment variable.

Affected products

20
  • IBM/Db2 Universal Database20 versions
    cpe:2.3:a:ibm:db2_universal_database:7.0:*:aix:*:*:*:*:*+ 19 more
    • cpe:2.3:a:ibm:db2_universal_database:7.0:*:aix:*:*:*:*:*
    • cpe:2.3:a:ibm:db2_universal_database:7.0:*:hp-ux:*:*:*:*:*
    • cpe:2.3:a:ibm:db2_universal_database:7.0:*:linux:*:*:*:*:*
    • cpe:2.3:a:ibm:db2_universal_database:7.0:*:solaris:*:*:*:*:*
    • cpe:2.3:a:ibm:db2_universal_database:7.1:*:aix:*:*:*:*:*
    • cpe:2.3:a:ibm:db2_universal_database:7.1:*:hp-ux:*:*:*:*:*
    • cpe:2.3:a:ibm:db2_universal_database:7.1:*:linux:*:*:*:*:*
    • cpe:2.3:a:ibm:db2_universal_database:7.1:*:solaris:*:*:*:*:*
    • cpe:2.3:a:ibm:db2_universal_database:7.2:*:aix:*:*:*:*:*
    • cpe:2.3:a:ibm:db2_universal_database:7.2:*:hp-ux:*:*:*:*:*
    • cpe:2.3:a:ibm:db2_universal_database:7.2:*:linux:*:*:*:*:*
    • cpe:2.3:a:ibm:db2_universal_database:7.2:*:solaris:*:*:*:*:*
    • cpe:2.3:a:ibm:db2_universal_database:8.0:*:aix:*:*:*:*:*
    • cpe:2.3:a:ibm:db2_universal_database:8.0:*:hp-ux:*:*:*:*:*
    • cpe:2.3:a:ibm:db2_universal_database:8.0:*:linux:*:*:*:*:*
    • cpe:2.3:a:ibm:db2_universal_database:8.0:*:solaris:*:*:*:*:*
    • cpe:2.3:a:ibm:db2_universal_database:8.1:*:aix:*:*:*:*:*
    • cpe:2.3:a:ibm:db2_universal_database:8.1:*:hp_ux:*:*:*:*:*
    • cpe:2.3:a:ibm:db2_universal_database:8.1:*:linux:*:*:*:*:*
    • cpe:2.3:a:ibm:db2_universal_database:8.1:*:solaris:*:*:*:*:*

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

6

News mentions

0

No linked articles in our index yet.