VYPR
Unrated severityNVD Advisory· Published Apr 16, 2008· Updated Jun 16, 2026

CVE-2007-5664

CVE-2007-5664

Description

db2dasrrm in the DB2 Administration Server (DAS) in IBM DB2 Universal Database 9.5 before Fix Pack 1, 9.1 before Fix Pack 4a, and 8 before FixPak 16 allows local users to overwrite arbitrary files via a symlink attack on files used for initialization.

Affected products

4
  • cpe:2.3:a:ibm:db2_universal_database:8:*:*:*:*:*:*:*+ 3 more
    • cpe:2.3:a:ibm:db2_universal_database:8:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:db2_universal_database:9.1:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:db2_universal_database:9.5:*:*:*:*:*:*:*
    • (no CPE)range: <9.5 FP1, <9.1 FP4a, <8 FP16

Patches

Vulnerability mechanics

References

6

News mentions

0

No linked articles in our index yet.