Vulnerabilities

CVE-2010-3474

by Fred · 20/09/2010

IBM DB2 9.7 before FP3 does not perform the expected drops or invalidations of dependent functions upon a loss of privileges by the functions’ owners, which allows remote authenticated users to bypass intended access restrictions via calls to these functions, a different vulnerability than CVE-2009-3471.

Date published : 2010-09-20

http://www-01.ibm.com/support/docview.wss?uid=swg1IC68015

http://www.securityfocus.com/bid/43291

Similar

Tags: Cybersecurity Alert