News

Critical flaw discovered in IBM DB2

IBM's DB2 database management system contains a flaw that could be exploited remotely by an attacker to take control of a system.

By

SearchSecurity.com Staff

Published: 05 Sep 2007 11:00

IBM has issued a patch to plug a critical flaw in its DB2 database management system that an attacker could exploit to take complete control of a system.

The flaw was discovered in DB2 version 9.1 Fixpack 2 Enterprise server edition. A buffer overflow condition exists within the sysproc.auth_list_groups_for_authid function.

The discovery was made Ariel Sanchez of New York City-based database security vendor, Application Security. The firm issued an advisory Friday for the DB2 flaw after IBM released a fix.

Read more on Business applications

Search CIO

What is risk transfer? Methods, examples and strategic tips
Risk transfer shifts potential financial liability from one party to another through insurance contracts, legal agreements or ...
How to attract tech talent in 2025: 7 essentials
In this time of 'the great churn,' finding and keeping great tech talent sounds merely aspirational. Read on for seven methods ...
13 types of business risks for companies to manage
Knowing the types of risks businesses commonly face and their applicability to your company is a first step toward effective risk...

Search Security

Security risks of AI-generated code and how to manage them
Application security teams are understandably worried about how developers use GenAI and LLMs to create code. But it's not all ...
How to choose a cloud key management service
Amazon, Microsoft, Google, Oracle and cloud-agnostic vendors offer cloud key management services. Read up on what each offers and...
How to create a remote access policy, with template
Remote work, while beneficial, presents numerous security risks. Help keep your organization's systems safe with a remote access ...

Search Networking

What is a rogue DHCP server?
Rogue DHCP servers can throw DHCP infrastructures out of balance. These servers cause numerous network problems but are easy to ...
How AIOps enables next-generation networking
As networks grow more complex, management becomes more difficult. AIOps can help network administrators transition to and manage ...
BGP routing: A configuration and troubleshooting tutorial
BGP is the internet's core routing protocol, enabling communication between ISPs and large networks. This guide covers its ...

Search Data Center

Useful commands to check CPU info in Linux systems
You can issue commands through your Linux CLI to gather CPU information, including detailed information on cores, class, ...
AI and private cloud: 2 lessons from Dell Tech World 2025
Two key insights emerged for IT professionals around enterprise AI integration and private cloud infrastructure.
Dell Technologies customers building real-world AI apps
Enterprises and nonprofits at Dell Tech World 2025 are already deploying advanced AI, as Dell Technologies readies a new wave of ...

Search Data Management

Monte Carlo adds observability for unstructured data
With AI tools requiring large amounts of high-quality input to be accurate, the vendor is making it easier to monitor all types ...
Alation boosts agentic AI with Numbers Station acquisition
The acquisition adds capabilities such as Chat that enable users to embed agents in workflows to complement the vendor's existing...
Addition of new AI capabilities shows Starburst's growth
The open source data lakehouse vendor continues to evolve beyond being a data mesh specialist with the additions of agentic tools...

Close

Critical flaw discovered in IBM DB2

IBM's DB2 database management system contains a flaw that could be exploited remotely by an attacker to take control of a system.

Read more on Business applications

What is VSAM (Virtual Storage Access Method)?

database management system (DBMS)

RDBMS (relational database management system)

IBM IMS (Information Management System)