What is the severity of CVE-2005-4864?

CVE-2005-4864 is considered a critical vulnerability due to its potential to allow arbitrary code execution.

How do I fix CVE-2005-4864?

To fix CVE-2005-4864, ensure that the affected versions of IBM DB2 are updated to the latest secure versions provided by IBM.

Who is affected by CVE-2005-4864?

Local users of IBM DB2 versions 7.x and 8.1 on various operating systems are affected by CVE-2005-4864.

What causes CVE-2005-4864?

CVE-2005-4864 is caused by a stack-based buffer overflow resulting from a long DB2LPORT environment variable.

Can CVE-2005-4864 be exploited remotely?

CVE-2005-4864 is a local vulnerability, meaning it cannot be exploited remotely without local user access.

Vulnerability/
CVE-2005-4864

high

7.2

CWE

119

31/12/2005

6/10/2007

8/8/2024

CVE-2005-4864: Buffer Overflow

First published: Sat Dec 31 2005(Updated: )

Stack-based buffer overflow in libdb2.so in IBM DB2 7.x and 8.1 allows local users to execute arbitrary code via a long DB2LPORT environment variable.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
IBM DB2 Universal Database	=7.1
IBM DB2 Universal Database	=8.1
IBM DB2 Universal Database	=8.0
IBM DB2 Universal Database	=7.0
IBM DB2 Universal Database	=7.2
IBM DB2 Universal Database	=7.0
IBM DB2 Universal Database	=8.0
IBM DB2 Universal Database	=8.1
IBM DB2 Universal Database	=8.0
IBM DB2 Universal Database	=7.1
IBM DB2 Universal Database	=7.2
IBM DB2 Universal Database	=7.2
IBM DB2 Universal Database	=8.1
IBM DB2 Universal Database	=8.1
IBM DB2 Universal Database	=7.1
IBM DB2 Universal Database	=7.0
IBM DB2 Universal Database	=7.2
IBM DB2 Universal Database	=7.1
IBM DB2 Universal Database	=8.0
IBM DB2 Universal Database	=7.0

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2005-4864?
CVE-2005-4864 is considered a critical vulnerability due to its potential to allow arbitrary code execution.
How do I fix CVE-2005-4864?
To fix CVE-2005-4864, ensure that the affected versions of IBM DB2 are updated to the latest secure versions provided by IBM.
Who is affected by CVE-2005-4864?
Local users of IBM DB2 versions 7.x and 8.1 on various operating systems are affected by CVE-2005-4864.
What causes CVE-2005-4864?
CVE-2005-4864 is caused by a stack-based buffer overflow resulting from a long DB2LPORT environment variable.
Can CVE-2005-4864 be exploited remotely?
CVE-2005-4864 is a local vulnerability, meaning it cannot be exploited remotely without local user access.

agent/references
agent/type
agent/first-publish-date
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/remedy
agent/author
agent/severity
agent/last-modified-date
agent/weakness
agent/description
agent/event
agent/source
agent/tags
collector/nvd-historical
agent/software-canonical-lookup-request
collector/nvd-index
vendor/ibm
canonical/ibm db2 universal database
version/ibm db2 universal database/7.1
version/ibm db2 universal database/8.1
version/ibm db2 universal database/8.0
version/ibm db2 universal database/7.0
version/ibm db2 universal database/7.2

CVE-2005-4864: Buffer Overflow

Remedy

Remedy

Remedy

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2005-4864?

How do I fix CVE-2005-4864?

Who is affected by CVE-2005-4864?

What causes CVE-2005-4864?

Can CVE-2005-4864 be exploited remotely?

Company

Resources

Contact