VYPR
Unrated severityNVD Advisory· Published Apr 28, 2008· Updated Jun 16, 2026

CVE-2008-1998

CVE-2008-1998

Description

The NNSTAT (aka SYSPROC.NNSTAT) procedure in IBM DB2 8 before FP16, 9.1 before FP4a, and 9.5 before FP1 on Windows allows remote authenticated users to overwrite arbitrary files via the log file parameter.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

29
  • IBM/Db229 versions
    cpe:2.3:a:ibm:db2:8.0:fp1:*:*:*:*:*:*+ 28 more
    • cpe:2.3:a:ibm:db2:8.0:fp1:*:*:*:*:*:*
    • cpe:2.3:a:ibm:db2:8.0:fp10:*:*:*:*:*:*
    • cpe:2.3:a:ibm:db2:8.0:fp11:*:*:*:*:*:*
    • cpe:2.3:a:ibm:db2:8.0:fp12:*:*:*:*:*:*
    • cpe:2.3:a:ibm:db2:8.0:fp13:*:*:*:*:*:*
    • cpe:2.3:a:ibm:db2:8.0:fp14:*:*:*:*:*:*
    • cpe:2.3:a:ibm:db2:8.0:fp15:*:*:*:*:*:*
    • cpe:2.3:a:ibm:db2:8.0:fp2:*:*:*:*:*:*
    • cpe:2.3:a:ibm:db2:8.0:fp3:*:*:*:*:*:*
    • cpe:2.3:a:ibm:db2:8.0:fp4:*:*:*:*:*:*
    • cpe:2.3:a:ibm:db2:8.0:fp5:*:*:*:*:*:*
    • cpe:2.3:a:ibm:db2:8.0:fp6:*:*:*:*:*:*
    • cpe:2.3:a:ibm:db2:8.0:fp6a:*:*:*:*:*:*
    • cpe:2.3:a:ibm:db2:8.0:fp6b:*:*:*:*:*:*
    • cpe:2.3:a:ibm:db2:8.0:fp6c:*:*:*:*:*:*
    • cpe:2.3:a:ibm:db2:8.0:fp7:*:*:*:*:*:*
    • cpe:2.3:a:ibm:db2:8.0:fp7a:*:*:*:*:*:*
    • cpe:2.3:a:ibm:db2:8.0:fp7b:*:*:*:*:*:*
    • cpe:2.3:a:ibm:db2:8.0:fp8:*:*:*:*:*:*
    • cpe:2.3:a:ibm:db2:8.0:fp8a:*:*:*:*:*:*
    • cpe:2.3:a:ibm:db2:8.0:fp9:*:*:*:*:*:*
    • cpe:2.3:a:ibm:db2:8.0:fp9a:*:*:*:*:*:*
    • cpe:2.3:a:ibm:db2:9.1:fp1:*:*:*:*:*:*
    • cpe:2.3:a:ibm:db2:9.1:fp2:*:*:*:*:*:*
    • cpe:2.3:a:ibm:db2:9.1:fp3:*:*:*:*:*:*
    • cpe:2.3:a:ibm:db2:9.1:fp3a:*:*:*:*:*:*
    • cpe:2.3:a:ibm:db2:9.1:fp4:*:*:*:*:*:*
    • cpe:2.3:a:ibm:db2:9.5:*:*:*:*:*:*:*
    • (no CPE)range: <FP16 (v8), <FP4a (v9.1), <FP1 (v9.5)

Patches

Vulnerability mechanics

References

10

News mentions

0

No linked articles in our index yet.