Fixes available for critical IBM DB2 flaws
- 13 September, 2004 14:36
Among other vulnerabilities, security researchers at NGS (Next Generation Security) Software report that IBM DB2 8.1 (with FixPak 6 or earlier) and 7.x (with Fixspak 11 or earlier) are vulnerable to remotely exploitable buffer overflows. Successful exploitation of these overflows could lead to execution of arbitrary code with the privileges of the DB2 process. NGS Software has released a very brief advisory, which includes URLs to the relevant IBM download pages for the latest FixPaks that address these vulnerabilities.