Juniper Networks
Solutions
Products & Services
Company
Partners
Support
Education

Signature Detail

Security Intelligence Center
Signatures
Print

Short Name

 DB:DB2:JDBC-OF

Severity

 High

Recommended

 No

Recommended Action

 Drop

Category

 DB

Keywords

 IBM DB2 JDBC Applet Server Overflow

Release Date

 2010/03/02

Update Number

 1618

Supported Platforms

 idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

DB: IBM DB2 JDBC Applet Server Overflow


This signature detects attempts to exploit a known vulnerability in the IBM DB2 JDBC Applet Server. A successful attack can lead to a buffer overflow and arbitrary remote code execution within the context of the server.

Extended Description

IBM DB2 Universal Database is prone to an unspecified remote code-execution vulnerability. An attacker can exploit this issue to execute arbitrary code in the context of the user running the application. Successful attacks can result in the compromise of the application or can cause denial-of-service conditions. This issue was fixed in fixpak 15 for v8.

Affected Products

  • IBM DB2 Universal Database for AIX 6.0.0
  • IBM DB2 Universal Database for AIX 6.1.0
  • IBM DB2 Universal Database for AIX 7.0.0
  • IBM DB2 Universal Database for AIX 7.1.0
  • IBM DB2 Universal Database for AIX 7.2.0
  • IBM DB2 Universal Database for AIX 8.0.0
  • IBM DB2 Universal Database for AIX 8.0 FixPak 13
  • IBM DB2 Universal Database for AIX 8.1.0
  • IBM DB2 Universal Database for AIX 8.10.0
  • IBM DB2 Universal Database for AIX 8.12.0
  • IBM DB2 Universal Database for AIX 8.1.4
  • IBM DB2 Universal Database for AIX 8.1.5
  • IBM DB2 Universal Database for AIX 8.1.6
  • IBM DB2 Universal Database for AIX 8.1.6 c
  • IBM DB2 Universal Database for AIX 8.1.7
  • IBM DB2 Universal Database for AIX 8.1.7 b
  • IBM DB2 Universal Database for AIX 8.1.8
  • IBM DB2 Universal Database for AIX 8.1.8 a
  • IBM DB2 Universal Database for AIX 8.1.9
  • IBM DB2 Universal Database for AIX 8.1.9 a
  • IBM DB2 Universal Database for AIX 8.1 FixPak 14
  • IBM DB2 Universal Database for AIX 8.2.0
  • IBM DB2 Universal Database for AIX 8.2 FixPak 7
  • IBM DB2 Universal Database for AIX 9.0.0
  • IBM DB2 Universal Database for AIX 9.0.0 Fixpak 1
  • IBM DB2 Universal Database for AIX 9.0 Fix Pack 2
  • IBM DB2 Universal Database for AIX 9.1
  • IBM DB2 Universal Database for AIX 9.1 FixPack 2
  • IBM DB2 Universal Database for HP-UX 6.0.0
  • IBM DB2 Universal Database for HP-UX 6.1.0
  • IBM DB2 Universal Database for HP-UX 7.0.0
  • IBM DB2 Universal Database for HP-UX 7.1.0
  • IBM DB2 Universal Database for HP-UX 7.2.0
  • IBM DB2 Universal Database for HP-UX 8.0.0
  • IBM DB2 Universal Database for HP-UX 8.0 FixPak 13
  • IBM DB2 Universal Database for HP-UX 8.1.0
  • IBM DB2 Universal Database for HP-UX 8.10.0
  • IBM DB2 Universal Database for HP-UX 8.12.0
  • IBM DB2 Universal Database for HP-UX 8.1.4
  • IBM DB2 Universal Database for HP-UX 8.1.5
  • IBM DB2 Universal Database for HP-UX 8.1.6
  • IBM DB2 Universal Database for HP-UX 8.1.6 c
  • IBM DB2 Universal Database for HP-UX 8.1.7
  • IBM DB2 Universal Database for HP-UX 8.1.7 b
  • IBM DB2 Universal Database for HP-UX 8.1.8
  • IBM DB2 Universal Database for HP-UX 8.1.8 a
  • IBM DB2 Universal Database for HP-UX 8.1.9
  • IBM DB2 Universal Database for HP-UX 8.1.9 a
  • IBM DB2 Universal Database for HP-UX 8.1 FixPak 14
  • IBM DB2 Universal Database for HP-UX 8.2.0
  • IBM DB2 Universal Database for HP-UX 8.2 FixPak 7
  • IBM DB2 Universal Database for HP-UX 9.0.0
  • IBM DB2 Universal Database for HP-UX 9.0.0 Fixpak 1
  • IBM DB2 Universal Database for HP-UX 9.1
  • IBM DB2 Universal Database for HP-UX 9.1 FixPack 2
  • IBM DB2 Universal Database for Linux 6.0.0
  • IBM DB2 Universal Database for Linux 6.1.0
  • IBM DB2 Universal Database for Linux 7.0.0
  • IBM DB2 Universal Database for Linux 7.1.0
  • IBM DB2 Universal Database for Linux 7.2.0
  • IBM DB2 Universal Database for Linux 8.0.0
  • IBM DB2 Universal Database for Linux 8.0 FixPak 13
  • IBM DB2 Universal Database for Linux 8.1.0
  • IBM DB2 Universal Database for Linux 8.10.0
  • IBM DB2 Universal Database for Linux 8.12.0
  • IBM DB2 Universal Database for Linux 8.1.4
  • IBM DB2 Universal Database for Linux 8.1.5
  • IBM DB2 Universal Database for Linux 8.1.6
  • IBM DB2 Universal Database for Linux 8.1.6 c
  • IBM DB2 Universal Database for Linux 8.1.7
  • IBM DB2 Universal Database for Linux 8.1.7 b
  • IBM DB2 Universal Database for Linux 8.1.8
  • IBM DB2 Universal Database for Linux 8.1.8 a
  • IBM DB2 Universal Database for Linux 8.1.9
  • IBM DB2 Universal Database for Linux 8.1.9 a
  • IBM DB2 Universal Database for Linux 8.1 FixPak 14
  • IBM DB2 Universal Database for Linux 8.2.0
  • IBM DB2 Universal Database for Linux 8.2 FixPak 7
  • IBM DB2 Universal Database for Linux 9.0.0
  • IBM DB2 Universal Database for Linux 9.0.0 Fixpack 1
  • IBM DB2 Universal Database for Linux 9.0 Fix Pack 2
  • IBM DB2 Universal Database for Linux 9.1
  • IBM DB2 Universal Database for Linux 9.1 FixPack 2
  • IBM DB2 Universal Database for OS/390 and z/OS 5.0.0
  • IBM DB2 Universal Database for OS/390 and z/OS 6.0.0
  • IBM DB2 Universal Database for OS/390 and z/OS 7.1.0
  • IBM DB2 Universal Database for OS/390 and z/OS 8.0.0
  • IBM DB2 Universal Database for OS/390 and z/OS 8.0 FixPak 13
  • IBM DB2 Universal Database for OS/390 and z/OS 8.1 FixPak 14
  • IBM DB2 Universal Database for Solaris 6.0.0
  • IBM DB2 Universal Database for Solaris 6.1.0
  • IBM DB2 Universal Database for Solaris 7.0.0
  • IBM DB2 Universal Database for Solaris 7.1.0
  • IBM DB2 Universal Database for Solaris 7.2.0
  • IBM DB2 Universal Database for Solaris 8.0.0
  • IBM DB2 Universal Database for Solaris 8.0 FixPak 13
  • IBM DB2 Universal Database for Solaris 8.1.0
  • IBM DB2 Universal Database for Solaris 8.10.0
  • IBM DB2 Universal Database for Solaris 8.12.0
  • IBM DB2 Universal Database for Solaris 8.1.4
  • IBM DB2 Universal Database for Solaris 8.1.5
  • IBM DB2 Universal Database for Solaris 8.1.6
  • IBM DB2 Universal Database for Solaris 8.1.6 c
  • IBM DB2 Universal Database for Solaris 8.1.7
  • IBM DB2 Universal Database for Solaris 8.1.7 b
  • IBM DB2 Universal Database for Solaris 8.1.8
  • IBM DB2 Universal Database for Solaris 8.1.8 a
  • IBM DB2 Universal Database for Solaris 8.1.9
  • IBM DB2 Universal Database for Solaris 8.1.9 a
  • IBM DB2 Universal Database for Solaris 8.1 FixPak 14
  • IBM DB2 Universal Database for Solaris 8.2 FixPak 7
  • IBM DB2 Universal Database for Solaris 9.0.0
  • IBM DB2 Universal Database for Solaris 9.0.0 Fixpak 1
  • IBM DB2 Universal Database for Solaris 9.0 Fix Pack 2
  • IBM DB2 Universal Database for Solaris 9.1
  • IBM DB2 Universal Database for Solaris 9.1 FixPack 2
  • IBM DB2 Universal Database for Windows 7.1.0
  • IBM DB2 Universal Database for Windows 7.2.0
  • IBM DB2 Universal Database for Windows 8.0.0
  • IBM DB2 Universal Database for Windows 8.0 FixPak 13
  • IBM DB2 Universal Database for Windows 8.1.0
  • IBM DB2 Universal Database for Windows 8.10.0
  • IBM DB2 Universal Database for Windows 8.12.0
  • IBM DB2 Universal Database for Windows 8.1.4
  • IBM DB2 Universal Database for Windows 8.1.5
  • IBM DB2 Universal Database for Windows 8.1.6
  • IBM DB2 Universal Database for Windows 8.1.6 c
  • IBM DB2 Universal Database for Windows 8.1.7
  • IBM DB2 Universal Database for Windows 8.1.7 b
  • IBM DB2 Universal Database for Windows 8.1.8
  • IBM DB2 Universal Database for Windows 8.1.8 a
  • IBM DB2 Universal Database for Windows 8.1.9
  • IBM DB2 Universal Database for Windows 8.1.9 a
  • IBM DB2 Universal Database for Windows 8.1 FixPak 14
  • IBM DB2 Universal Database for Windows 8.2.0
  • IBM DB2 Universal Database for Windows 8.2 FixPak 7
  • IBM DB2 Universal Database for Windows 9.0 Fix Pack 2
  • IBM DB2 Universal Database for Windows 9.1
  • IBM DB2 Universal Database for Windows 9.1 FixPack 2
  • IBM DB2 Universal Database for Windows NT 6.1.0
  • IBM DB2 Universal Database for Windows NT 7.1.0
  • IBM DB2 Universal Database Win98/NT/2000 7.0.0

References

  • BugTraq: 23890
  • CVE: CVE-2007-2582
  • URL: http://www.zerodayinitiative.com/advisories/ZDI-07-056.html

Site Map
RSS Feeds
Careers
Accessibility
Feedback
Privacy Policy
Legal Notices
Copyright © 1999-2010 Juniper Networks, Inc. All rights reserved.
Help
|
My Account
|
Log Out