CVE-2011-4061

Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
18/10/2011
Last modified:
11/04/2025

Description

Multiple untrusted search path vulnerabilities in (1) db2rspgn and (2) kbbacf1 in IBM DB2 Express Edition 9.7, as used in the IBM Tivoli Monitoring for Databases: DB2 Agent, allow local users to gain privileges via a Trojan horse libkbb.so in the current working directory, related to the DT_RPATH ELF header.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:ibm:db2:9.7:*:express:*:*:*:*:*
cpe:2.3:a:ibm:tivoli_monitoring_for_databases:*:*:*:*:*:*:*:*