VYPR
Unrated severityNVD Advisory· Published May 30, 2014· Updated Jun 17, 2026

CVE-2014-0907

CVE-2014-0907

Description

Multiple untrusted search path vulnerabilities in unspecified (1) setuid and (2) setgid programs in IBM DB2 9.5, 9.7 before FP9a, 9.8, 10.1 before FP3a, and 10.5 before FP3a on Linux and UNIX allow local users to gain root privileges via a Trojan horse library.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

19
  • IBM/Db219 versions
    cpe:2.3:a:ibm:db2:10.1:*:*:*:*:*:*:*+ 18 more
    • cpe:2.3:a:ibm:db2:10.1:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:db2:10.1.0.1:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:db2:10.1.0.2:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:db2:10.1.0.3:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:db2:10.5:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:db2:10.5.0.1:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:db2:10.5.0.2:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:db2:9.5:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:db2:9.7:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:db2:9.7.0.1:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:db2:9.7.0.2:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:db2:9.7.0.3:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:db2:9.7.0.4:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:db2:9.7.0.5:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:db2:9.7.0.6:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:db2:9.7.0.7:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:db2:9.7.0.8:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:db2:9.7.0.9:*:*:*:*:*:*:*
    • (no CPE)range: 9.5, 9.7 before FP9a, 9.8, 10.1 before FP3a, 10.5 before FP3a

Patches

Vulnerability mechanics

References

22

News mentions

0

No linked articles in our index yet.