Insecure DLL loading in IBM DB2 - CVE-2018-1802
Published: November 12, 2018 / Updated: November 15, 2018
Vulnerability identifier: #VU15906
CSH Severity: Low
CVSSv4.0: CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear
CVE-ID: CVE-2018-1802
CWE-ID: CWE-427
Exploitation vector: Local access
Exploit availability:
No public exploit available
Vulnerable software:
IBM DB2
IBM DB2
Software vendor:
IBM Corporation
IBM Corporation
Description
The vulnerability allows a local attacker to compromise vulnerable system.
The vulnerability exists due to insecure .dll loading mechanism when opening files. A local attacker can place a file along with specially crafted .dll file on a remote SBM or WebDAV share, trick the victim into opening it and execute arbitrary code on the target system with privileges of the current victim.
Successful exploitation of the vulnerability may allow an attacker to compromise vulnerable system.
Remediation
The vulnerability has been fixed in the versions 9.7 FP11, 10.1 FP6, 10.5 FP10, 11.1.3.3 iFix002.