Only a week late noticing this one. Sheesh. Turns out that there is a buffer overflow in DB2. Specifically in “sysproc.auth_list_groups_for_authid”.
From the AppSecInc advisory:
Details:
Buffer overflow on sysproc.auth_list_groups_for_authid function.
By passing an overly long value of more then 40-bytes to the auth_list_groups_for_authid function,
a stack-based buffer can be overflowen.OS:
Windows 2003 sp1Install options:
DB2 Installed with all defaults but with Notifications disabledImpact:
An attacker can use this to cause a denial of service or take complete control of an affected system.Vendor Status:
Vendor was contacted and a patch was released.
Tags: IBM DB2, DB2 Buffer Overflow
