CVE-2007-5758 - Vulnerability Details - OpenCVE

Stack-based buffer overflow in db2dasrrm in the DB2 Administration Server (DAS) in IBM DB2 Universal Database 9.5 before Fix Pack 1, 9.1 before Fix Pack 4a, and 8 before FixPak 16 allows local users to execute arbitrary code via a long DASPROF environment variable.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Local

Access Complexity Medium

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

This CVE is not in the KEV list.

The EPSS score is 0.00074.

Key SSVC decision points have not yet been added.

Vendors	Products
Ibm	Db2 Universal Database

Configuration 1 [-]

OR	cpe:2.3:a:ibm:db2_universal_database:8:::::::*
	cpe:2.3:a:ibm:db2_universal_database:9.1:::::::*
	cpe:2.3:a:ibm:db2_universal_database:9.5:::::::*

No data.

No data.

Advisories

Source	ID	Title
EUVD	EUVD-2007-5728	Stack-based buffer overflow in db2dasrrm in the DB2 Administration Server (DAS) in IBM DB2 Universal Database 9.5 before Fix Pack 1, 9.1 before Fix Pack 4a, and 8 before FixPak 16 allows local users to execute arbitrary code via a long DASPROF environment variable.

Fixes

Solution

No solution given by the vendor.

Workaround

No workaround given by the vendor.

References

Link	Providers
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=689
http://secunia.com/advisories/29784
http://www.securityfocus.com/bid/27870
http://www.securitytracker.com/id?1019853
http://www.vupen.com/english/advisories/2008/1237/references
https://exchange.xforce.ibmcloud.com/vulnerabilities/41847

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2008-04-16T18:00:00

Updated: 2024-08-07T15:39:13.927Z

Reserved: 2007-10-31T00:00:00

Link: CVE-2007-5758

Vulnrichment

No data.

NVD

Status : Deferred

Published: 2008-04-16T18:05:00.000

Modified: 2025-04-09T00:30:58.490

Link: CVE-2007-5758

Redhat

No data.

OpenCVE Enrichment

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2008-04-15T00:00:00", "descriptions": [{"lang": "en", "value": "Stack-based buffer overflow in db2dasrrm in the DB2 Administration Server (DAS) in IBM DB2 Universal Database 9.5 before Fix Pack 1, 9.1 before Fix Pack 4a, and 8 before FixPak 16 allows local users to execute arbitrary code via a long DASPROF environment variable."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-07-28T12:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "ibm-db2-db2dasrrm-dasprof-bo(41847)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/41847"}, {"name": "1019853", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://www.securitytracker.com/id?1019853"}, {"name": "29784", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/29784"}, {"name": "ADV-2008-1237", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2008/1237/references"}, {"name": "27870", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/27870"}, {"name": "20080415 IBM DB2 Universal Database db2dasStartStopFMDaemon Buffer Overflow Vulnerability", "tags": ["third-party-advisory", "x_refsource_IDEFENSE"], "url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=689"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2007-5758", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Stack-based buffer overflow in db2dasrrm in the DB2 Administration Server (DAS) in IBM DB2 Universal Database 9.5 before Fix Pack 1, 9.1 before Fix Pack 4a, and 8 before FixPak 16 allows local users to execute arbitrary code via a long DASPROF environment variable."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "ibm-db2-db2dasrrm-dasprof-bo(41847)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/41847"}, {"name": "1019853", "refsource": "SECTRACK", "url": "http://www.securitytracker.com/id?1019853"}, {"name": "29784", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/29784"}, {"name": "ADV-2008-1237", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2008/1237/references"}, {"name": "27870", "refsource": "BID", "url": "http://www.securityfocus.com/bid/27870"}, {"name": "20080415 IBM DB2 Universal Database db2dasStartStopFMDaemon Buffer Overflow Vulnerability", "refsource": "IDEFENSE", "url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=689"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T15:39:13.927Z"}, "title": "CVE Program Container", "references": [{"name": "ibm-db2-db2dasrrm-dasprof-bo(41847)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/41847"}, {"name": "1019853", "tags": ["vdb-entry", "x_refsource_SECTRACK", "x_transferred"], "url": "http://www.securitytracker.com/id?1019853"}, {"name": "29784", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/29784"}, {"name": "ADV-2008-1237", "tags": ["vdb-entry", "x_refsource_VUPEN", "x_transferred"], "url": "http://www.vupen.com/english/advisories/2008/1237/references"}, {"name": "27870", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/27870"}, {"name": "20080415 IBM DB2 Universal Database db2dasStartStopFMDaemon Buffer Overflow Vulnerability", "tags": ["third-party-advisory", "x_refsource_IDEFENSE", "x_transferred"], "url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=689"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2007-5758", "datePublished": "2008-04-16T18:00:00", "dateReserved": "2007-10-31T00:00:00", "dateUpdated": "2024-08-07T15:39:13.927Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:ibm:db2_universal_database:8:*:*:*:*:*:*:*", "matchCriteriaId": "3BB95F92-EA60-4301-99AD-AC8DA2491086", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:db2_universal_database:9.1:*:*:*:*:*:*:*", "matchCriteriaId": "01B696CD-C61F-4FDF-A51C-E62CB843BF5C", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:db2_universal_database:9.5:*:*:*:*:*:*:*", "matchCriteriaId": "F01421A6-B4B4-4F86-87D3-B11AEC1258CC", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Stack-based buffer overflow in db2dasrrm in the DB2 Administration Server (DAS) in IBM DB2 Universal Database 9.5 before Fix Pack 1, 9.1 before Fix Pack 4a, and 8 before FixPak 16 allows local users to execute arbitrary code via a long DASPROF environment variable."}, {"lang": "es", "value": "Desbordamiento de b\u00fafer basado en pila en db2dasrrm del DB2 Administration Server (DAS) en IBM DB2 Universal Database 9.5 anterior a Fix Pack 1, 9.1 anterior a Fix Pack 4a, y 8 anterior a FixPak 16; permite a usuarios locales ejecutar c\u00f3digo de su elecci\u00f3n mediante una larga variable de entorno DASPROF."}], "id": "CVE-2007-5758", "lastModified": "2025-04-09T00:30:58.490", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 6.9, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:M/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 3.4, "impactScore": 10.0, "obtainAllPrivilege": true, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2008-04-16T18:05:00.000", "references": [{"source": "cve@mitre.org", "url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=689"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/29784"}, {"source": "cve@mitre.org", "tags": ["Exploit"], "url": "http://www.securityfocus.com/bid/27870"}, {"source": "cve@mitre.org", "url": "http://www.securitytracker.com/id?1019853"}, {"source": "cve@mitre.org", "url": "http://www.vupen.com/english/advisories/2008/1237/references"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/41847"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=689"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/29784"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Exploit"], "url": "http://www.securityfocus.com/bid/27870"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securitytracker.com/id?1019853"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.vupen.com/english/advisories/2008/1237/references"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/41847"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-119"}], "source": "nvd@nist.gov", "type": "Primary"}]}