Arbitrary XML File Read Vulnerability in IBM DB2

Arbitrary XML File Read Vulnerability in IBM DB2

CVE-2012-2196 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

IBM DB2 9.1 before FP12, 9.5 through FP9, 9.7 through FP6, 9.8 through FP5, and 10.1 allows remote attackers to read arbitrary XML files via the (1) GET_WRAP_CFG_C or (2) GET_WRAP_CFG_C2 stored procedure.

Learn more about our Cis Benchmark Audit For Ibm Db2.