CVE-2008-1997

Severity CVSS v4.0:
Pending analysis
Type:
CWE-94 Code Injection
Publication date:
28/04/2008
Last modified:
09/04/2025

Description

Unspecified vulnerability in the ADMIN_SP_C2 procedure in IBM DB2 8 before FP16, 9.1 before FP4a, and 9.5 before FP1 allows remote authenticated users to execute arbitrary code via unknown vectors. NOTE: the ADMIN_SP_C issue is already covered by CVE-2008-0699.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:ibm:db2:8.0:-:*:*:*:*:*:*
cpe:2.3:a:ibm:db2:8.0:fixpak1:*:*:*:*:*:*
cpe:2.3:a:ibm:db2:8.0:fixpak10:*:*:*:*:*:*
cpe:2.3:a:ibm:db2:8.0:fixpak11:*:*:*:*:*:*
cpe:2.3:a:ibm:db2:8.0:fixpak12:*:*:*:*:*:*
cpe:2.3:a:ibm:db2:8.0:fixpak13:*:*:*:*:*:*
cpe:2.3:a:ibm:db2:8.0:fixpak14:*:*:*:*:*:*
cpe:2.3:a:ibm:db2:8.0:fixpak15:*:*:*:*:*:*
cpe:2.3:a:ibm:db2:8.0:fixpak2:*:*:*:*:*:*
cpe:2.3:a:ibm:db2:8.0:fixpak3:*:*:*:*:*:*
cpe:2.3:a:ibm:db2:8.0:fixpak4:*:*:*:*:*:*
cpe:2.3:a:ibm:db2:8.0:fixpak5:*:*:*:*:*:*
cpe:2.3:a:ibm:db2:8.0:fixpak6:*:*:*:*:*:*
cpe:2.3:a:ibm:db2:8.0:fixpak6a:*:*:*:*:*:*
cpe:2.3:a:ibm:db2:8.0:fixpak6b:*:*:*:*:*:*