What is the severity of CVE-2017-1439?

CVE-2017-1439 is rated as a high severity vulnerability due to its potential to allow local users to gain root access.

Who is affected by CVE-2017-1439?

CVE-2017-1439 affects IBM DB2 versions 9.7, 10.1, 10.5, and 11.1, including DB2 Connect Server.

How do I fix CVE-2017-1439?

To remediate CVE-2017-1439, it's recommended to apply the latest patches provided by IBM for affected DB2 versions.

What are the potential impacts of CVE-2017-1439?

CVE-2017-1439 could lead to unauthorized root access, compromising system integrity and confidentiality.

Can remote users exploit CVE-2017-1439?

No, CVE-2017-1439 can only be exploited by local users with database instance owner privileges.

Vulnerability/
CVE-2017-1439

high

7.2

7/9/2017

5/8/2024

CVE-2017-1439

First published: Thu Sep 07 2017(Updated: )

IBM DB2 for Linux, UNIX and Windows 9.7, 10,1, 10.5, and 11.1 (includes DB2 Connect Server) could allow a local user with DB2 instance owner privileges to obtain root access. IBM X-Force ID: 128058.

Credit: psirt@us.ibm.com

Affected Software	Affected Version	How to fix
Ibm Db2	=9.7
Ibm Db2	=9.7.0.1
Ibm Db2	=9.7.0.2
Ibm Db2	=9.7.0.3
Ibm Db2	=9.7.0.4
Ibm Db2	=9.7.0.5
Ibm Db2	=9.7.0.6
Ibm Db2	=9.7.0.7
Ibm Db2	=9.7.0.8
Ibm Db2	=9.7.0.9
Ibm Db2	=9.7.0.9-a
Ibm Db2	=9.7.0.10
Ibm Db2	=9.7.0.11
Ibm Db2	=10.1
Ibm Db2	=10.1.0.1
Ibm Db2	=10.1.0.2
Ibm Db2	=10.1.0.3
Ibm Db2	=10.1.0.4
Ibm Db2	=10.1.0.5
Ibm Db2	=10.5
Ibm Db2	=10.5.0.1
Ibm Db2	=10.5.0.2
Ibm Db2	=10.5.0.3
Ibm Db2	=10.5.0.3-a
Ibm Db2	=10.5.0.4
Ibm Db2	=10.5.0.5
Ibm Db2	=10.5.0.6
Ibm Db2	=10.5.0.7
Ibm Db2	=11.1.0.0
IBM DB2 Connect	=9.7
IBM DB2 Connect	=9.7.0.1
IBM DB2 Connect	=9.7.0.2
IBM DB2 Connect	=9.7.0.3
IBM DB2 Connect	=9.7.0.4
IBM DB2 Connect	=9.7.0.5
IBM DB2 Connect	=9.7.0.6
IBM DB2 Connect	=9.7.0.7
IBM DB2 Connect	=9.7.0.8
IBM DB2 Connect	=9.7.0.9
IBM DB2 Connect	=9.7.0.10
IBM DB2 Connect	=9.7.0.11
IBM DB2 Connect	=10.1
IBM DB2 Connect	=10.1.0.1
IBM DB2 Connect	=10.1.0.2
IBM DB2 Connect	=10.1.0.3
IBM DB2 Connect	=10.1.0.4
IBM DB2 Connect	=10.1.0.5
IBM DB2 Connect	=10.5
IBM DB2 Connect	=10.5.0.1
IBM DB2 Connect	=10.5.0.2
IBM DB2 Connect	=10.5.0.3
IBM DB2 Connect	=10.5.0.4
IBM DB2 Connect	=10.5.0.5
IBM DB2 Connect	=10.5.0.6
IBM DB2 Connect	=10.5.0.7
IBM DB2 Connect	=11.1.0.0
Linux Kernel
Microsoft Windows

Remedy

http://www.ibm.com/support/docview.wss?uid=swg22006061

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2017-1439?
CVE-2017-1439 is rated as a high severity vulnerability due to its potential to allow local users to gain root access.
Who is affected by CVE-2017-1439?
CVE-2017-1439 affects IBM DB2 versions 9.7, 10.1, 10.5, and 11.1, including DB2 Connect Server.
How do I fix CVE-2017-1439?
To remediate CVE-2017-1439, it's recommended to apply the latest patches provided by IBM for affected DB2 versions.
What are the potential impacts of CVE-2017-1439?
CVE-2017-1439 could lead to unauthorized root access, compromising system integrity and confidentiality.
Can remote users exploit CVE-2017-1439?
No, CVE-2017-1439 can only be exploited by local users with database instance owner privileges.

agent/references
agent/type
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/remedy
agent/last-modified-date
agent/author
agent/severity
agent/description
agent/event
agent/first-publish-date
agent/source
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
vendor/ibm
canonical/ibm db2
version/ibm db2/9.7
version/ibm db2/9.7.0.1
version/ibm db2/9.7.0.2
version/ibm db2/9.7.0.3
version/ibm db2/9.7.0.4
version/ibm db2/9.7.0.5
version/ibm db2/9.7.0.6
version/ibm db2/9.7.0.7
version/ibm db2/9.7.0.8
version/ibm db2/9.7.0.9
version/ibm db2/9.7.0.9-a
version/ibm db2/9.7.0.10
version/ibm db2/9.7.0.11
version/ibm db2/10.1
version/ibm db2/10.1.0.1
version/ibm db2/10.1.0.2
version/ibm db2/10.1.0.3
version/ibm db2/10.1.0.4
version/ibm db2/10.1.0.5
version/ibm db2/10.5
version/ibm db2/10.5.0.1
version/ibm db2/10.5.0.2
version/ibm db2/10.5.0.3
version/ibm db2/10.5.0.3-a
version/ibm db2/10.5.0.4
version/ibm db2/10.5.0.5
version/ibm db2/10.5.0.6
version/ibm db2/10.5.0.7
version/ibm db2/11.1.0.0
canonical/ibm db2 connect
version/ibm db2 connect/9.7
version/ibm db2 connect/9.7.0.1
version/ibm db2 connect/9.7.0.2
version/ibm db2 connect/9.7.0.3
version/ibm db2 connect/9.7.0.4
version/ibm db2 connect/9.7.0.5
version/ibm db2 connect/9.7.0.6
version/ibm db2 connect/9.7.0.7
version/ibm db2 connect/9.7.0.8
version/ibm db2 connect/9.7.0.9
version/ibm db2 connect/9.7.0.10
version/ibm db2 connect/9.7.0.11
version/ibm db2 connect/10.1
version/ibm db2 connect/10.1.0.1
version/ibm db2 connect/10.1.0.2
version/ibm db2 connect/10.1.0.3
version/ibm db2 connect/10.1.0.4
version/ibm db2 connect/10.1.0.5
version/ibm db2 connect/10.5
version/ibm db2 connect/10.5.0.1
version/ibm db2 connect/10.5.0.2
version/ibm db2 connect/10.5.0.3
version/ibm db2 connect/10.5.0.4
version/ibm db2 connect/10.5.0.5
version/ibm db2 connect/10.5.0.6
version/ibm db2 connect/10.5.0.7
version/ibm db2 connect/11.1.0.0
vendor/linux
canonical/linux kernel
vendor/microsoft
canonical/microsoft windows

CVE-2017-1439

Remedy

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2017-1439?

Who is affected by CVE-2017-1439?

How do I fix CVE-2017-1439?

What are the potential impacts of CVE-2017-1439?

Can remote users exploit CVE-2017-1439?

Company

Resources

Contact

Frequently Asked Questions

What is the severity of CVE-2017-1439?

Who is affected by CVE-2017-1439?

How do I fix CVE-2017-1439?

What are the potential impacts of CVE-2017-1439?

Can remote users exploit CVE-2017-1439?