[34078] in bugtraq
Re: IBM DB2 Remote Command Execution Privilege Upgrade
daemon@ATHENA.MIT.EDU (Marc Bejarano)
Wed Mar 10 11:44:57 2004
Message-Id: <6.0.3.0.2.20040309153945.042e0e38@127.0.0.1>
Date: Tue, 09 Mar 2004 15:41:21 -0400
To: "NGSSoftware Insight Security Research" <nisr@nextgenss.com>
From: Marc Bejarano <bugtraq@beej.org>
Cc: <bugtraq@securityfocus.com>, <NTBUGTRAQ@LISTSERV.NTBUGTRAQ.COM>,
<vulnwatch@vulnwatch.org>
In-Reply-To: <003a01c405e2$be578110$653214ac@GLADIUS>
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"; format=flowed
At 10:28 3/9/2004, NGSSoftware Insight Security Research wrote:
>NGSSoftware Insight Security Research Advisory
>
>Name: IBM DB2 Remote Command Execution Privilege Upgrade
>Systems Affected: DB2 8.1 Enterprise Edition on Windows
>Fix Information
>***************
>IDM have included a fix for this problem in Fixpak 5 -
>http://www-306.ibm.com/cgi-bin/db2www/data/db2/udb/winos2unix/support/v8fphist.d2w/report
>.
>The APAR for this specific issue is IY53894 -
>http://www-306.ibm.com/cgi-bin/db2www/data/db2/udb/winos2unix/support/aparlib.d2w/display_apar_details?aparno=IY53894
>.
those docs suggest that this affects ALL platforms, not just windows.
marc
