CVE-2008-2154

CVE-2008-2154 · MEDIUM Severity

AV:N/AC:M/AU:S/C:P/I:P/A:P

IBM DB2 8 before FP17, 9.1 before FP5, and 9.5 before FP2 provides an INSTALL_JAR (aka sqlj.install_jar) procedure, which allows remote authenticated users to create or overwrite arbitrary files via unspecified calls.

Learn more about our Cis Benchmark Audit For Ibm Db2.