News

Critical flaw discovered in IBM DB2

IBM's DB2 database management system contains a flaw that could be exploited remotely by an attacker to take control of a system.

By

SearchSecurity.com Staff

Published: 05 Sep 2007 11:00

IBM has issued a patch to plug a critical flaw in its DB2 database management system that an attacker could exploit to take complete control of a system.

The flaw was discovered in DB2 version 9.1 Fixpack 2 Enterprise server edition. A buffer overflow condition exists within the sysproc.auth_list_groups_for_authid function.

The discovery was made Ariel Sanchez of New York City-based database security vendor, Application Security. The firm issued an advisory Friday for the DB2 flaw after IBM released a fix.

Read more on Business applications

Latest News

Download Computer Weekly

In The Current Issue:
- Interview: Sarah Hawkins, CEO, National Family Mediation
- Government faces claims of serious security and data protection problems in One Login digital ID
Download Current Issue

Latest Blog Posts

Red Hat: AI is not about size, it’s about fit for purpose – CW Developer Network
It's the end of coding as we know it – Cliff Saran's Enterprise blog
View All Blogs

Search CIO

DOGE divides policymakers on federal IT modernization
A former federal deputy CIO testified that reauthorizing the Technology Modernization Fund will help the government continue IT ...
Regulators urge businesses to cooperate on data privacy laws
Providing detailed background information is one way to help data privacy regulators during investigations of potential ...
AI tests limits of data privacy regulation
OpenAI CEO Sam Altman speaks about where data privacy guardrails are needed and where there might be room to rework privacy ...

Search Security

4 lessons in the new era of AI-enabled cybercrime
Cyberattacks have evolved rapidly as GenAI use has become more widespread. An RSAC Conference 2025 panel shared what they've ...
RSA Conference: New Huntress, Qualys Offers, Malwarebytes Channel Initiatives
Salt Security, Diligent, Vodafone Business and Fortinet also made channel-relevant announcements during the conference.
RSAC: Check Point Warns of 'Rocket and Missile' Game with AI
Also, Rubrik and Rackspace unveiled a new strategic partnership.

Search Networking

How to use Cilium Hubble for network observability
Cilium's Hubble tool provides network observability while working in Kubernetes. This guide explains how Hubble works and how to ...
HPE Aruba deepens network security and OpsRamp visibility
A new 'digital circuit breaker' capability for HPE Private Clouds, increased visibility of third-party hardware with OpsRamp and ...
GenAI prompt engineering tactics for network pros
The accuracy and relevance of AI responses are directly influenced by the quality of the prompt. Each tool performs differently ...

Search Data Center

19 Linux performance monitoring utilities
Monitoring Linux server performance is vital for optimal operation. System admins should consider these 19 performance monitoring...
Explore the impact of quantum computing on cryptography
When quantum computers become more widely available, lots of encryption types will be vulnerable. Learn why, plus solutions and ...
Classical vs. quantum computing: What are the differences?
Classical and quantum computers differ in their computing capabilities, how they operate and the resources they need. Know the ...

Search Data Management

StarTree aims to simplify AI development with new features
The database vendor plans to add support for Model Context Protocol and automated vector embedding capabilities to make it faster...
StarTree aims to simplify AI development with new features
The database vendor plans to add support for Model Context Protocol and automated vector embedding capabilities to make it faster...
Acceldata launches agentic AI-powered anomaly detection
The data observability specialist's new feature uses agentic AI to ensure that the data used to inform analytics and AI tools is ...

Close

Critical flaw discovered in IBM DB2

IBM's DB2 database management system contains a flaw that could be exploited remotely by an attacker to take control of a system.

Read more on Business applications

What is VSAM (Virtual Storage Access Method)?

database management system (DBMS)

RDBMS (relational database management system)

IBM IMS (Information Management System)