News

Critical flaw discovered in IBM DB2

IBM's DB2 database management system contains a flaw that could be exploited remotely by an attacker to take control of a system.

By

SearchSecurity.com Staff

Published: 05 Sep 2007 11:00

IBM has issued a patch to plug a critical flaw in its DB2 database management system that an attacker could exploit to take complete control of a system.

The flaw was discovered in DB2 version 9.1 Fixpack 2 Enterprise server edition. A buffer overflow condition exists within the sysproc.auth_list_groups_for_authid function.

The discovery was made Ariel Sanchez of New York City-based database security vendor, Application Security. The firm issued an advisory Friday for the DB2 flaw after IBM released a fix.

Read more on Business applications

Search CIO

9 quantum computing challenges IT leaders should know
While the theory of quantum mechanics is complex, the technology might offer practical uses for organizations. Learn about the ...
Google, Meta antitrust cases could set legal precedents
The courts dealt Google a blow this week, deciding it operates an illegal monopoly in digital ad tech. Meta's antitrust trial ...
How quantum computing can improve supply chains
Quantum's ability to model and analyze complex scenarios is tailor-made for tasks like route optimization and inventory ...

Search Security

How to create a CBOM for quantum readiness
Quantum is on the horizon -- is your organization ready to migrate to post-quantum cryptographic algorithms? Make a CBOM to ...
Top 5 ransomware attack vectors and how to avoid them
Protecting your organization against ransomware attack entryways could mean the difference between staying safe or falling victim...
The history and evolution of ransomware attacks
Ransomware creators have become more innovative and savvier as organizations up their defenses.

Search Networking

A look at low Earth orbit use cases
LEO offers an alternative to traditional connectivity, especially in remote or underserved areas. While it has some limitations, ...
5G NSA vs. SA: How do the deployment modes differ?
Non-standalone 5G combines 4G LTE architecture with a 5G RAN. Standalone 5G, on the other hand, uses a 5G RAN and a cloud-native ...
The pros and cons of quantum networking
Quantum networking promises secure, high-speed communication -- someday. There are huge practical challenges, including fragility...

Search Data Center

Google Cloud Platform adds WAN and on-premises AI services
A handful of infrastructure announcements for the Google Cloud Platform debut at Next 2025 including a Cloud WAN service, ...
The state of quantum computing: What businesses need to know
Quantum computing's potential and steady advancement make the technology worth investigating, but adopters still need to deal ...
Broadcom VMware hardens vDefend, drops Tanzu branding in VCF
The VMware Cloud Foundation private cloud platform sheds the Tanzu branding for Kubernetes and adds new capabilities to vDefend, ...

Search Data Management

Monte Carlo launches first agents for data observability
Though the vendor already provides monitoring and troubleshooting capabilities, generative AI-powered agents for each aim to make...
Google enters new era of AI for data with launch of agents
Agentic AI applications for data engineering and data science along with a new underlying knowledge engine aim to make data ...
Snowflake embraces open source with full support for Iceberg
Three years after providing limited support for open data storage, the data platform vendor is signaling its embrace of open ...

Close

Critical flaw discovered in IBM DB2

IBM's DB2 database management system contains a flaw that could be exploited remotely by an attacker to take control of a system.

Read more on Business applications

What is VSAM (Virtual Storage Access Method)?

database management system (DBMS)

RDBMS (relational database management system)

IBM IMS (Information Management System)