critical
9
CWE
Advisory Published
Updated

CVE-2008-0699

First published: Tue Feb 12 2008(Updated: )

Unspecified vulnerability in the ADMIN_SP_C procedure (SYSPROC.ADMIN_SP_C) in IBM DB2 UDB before 8.2 Fixpak 16, 9.1 before FP4a, and 9.5 before FP1 allows remote authenticated users to execute arbitrary code via unspecified attack vectors.

Credit: cve@mitre.org

Affected SoftwareAffected VersionHow to fix
IBM DB2 Universal Database=8.2-fp1
IBM DB2 Universal Database=8.2-fp10
IBM DB2 Universal Database=8.2-fp11
IBM DB2 Universal Database=8.2-fp12
IBM DB2 Universal Database=8.2-fp13
IBM DB2 Universal Database=8.2-fp14
IBM DB2 Universal Database=8.2-fp15
IBM DB2 Universal Database=8.2-fp16
IBM DB2 Universal Database=8.2-fp2
IBM DB2 Universal Database=8.2-fp3
IBM DB2 Universal Database=8.2-fp4
IBM DB2 Universal Database=8.2-fp5
IBM DB2 Universal Database=8.2-fp6
IBM DB2 Universal Database=8.2-fp7
IBM DB2 Universal Database=8.2-fp8
IBM DB2 Universal Database=8.2-fp9
IBM DB2 Universal Database=9.1
IBM DB2 Universal Database=9.1-fp1
IBM DB2 Universal Database=9.1-fp2
IBM DB2 Universal Database=9.1-fp2a
IBM DB2 Universal Database=9.1-fp3
IBM DB2 Universal Database=9.1-fp3a
IBM DB2 Universal Database=9.1-fp4
IBM DB2 Universal Database=9.5

Remedy

http://www-1.ibm.com/support/docview.wss?uid=swg1IZ06972

Remedy

http://www-1.ibm.com/support/docview.wss?uid=swg1IZ06973

Remedy

http://www-1.ibm.com/support/docview.wss?uid=swg1IZ10917

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Reference Links

Frequently Asked Questions

  • What is the severity of CVE-2008-0699?

    CVE-2008-0699 has been classified as a high severity vulnerability due to its potential to allow remote authenticated users to execute arbitrary code.

  • How do I fix CVE-2008-0699?

    To fix CVE-2008-0699, upgrade IBM DB2 UDB to version 8.2 Fixpak 16, 9.1 FP4a, or 9.5 FP1 or later.

  • Who is affected by CVE-2008-0699?

    CVE-2008-0699 affects remote authenticated users of IBM DB2 UDB versions prior to the specified fixes.

  • What versions of IBM DB2 UDB are vulnerable to CVE-2008-0699?

    IBM DB2 UDB versions 8.2 before Fixpak 16, 9.1 before FP4a, and 9.5 before FP1 are vulnerable to CVE-2008-0699.

  • Is CVE-2008-0699 also applicable to previous fixpacks?

    Yes, CVE-2008-0699 is applicable to multiple previous fixpacks of IBM DB2 UDB before the specified upgrades.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203