Hi Dear Reader,
During the last couple of weeks we have published security vulnerabilities in database tools related to DB2 and Informix databases.
We're sure that you (as responsible database admin) usually don't run arbitrary "attacker supplied" .SQL files on your database.
But even more, after security audit results of Informix and DB2 database tools, we're sure that you want to add extra care on that one, since we've discovered that poisonous .SQL files can overflow database tools memory buffers and execute arbitrary code on your system.
Links to our advisories follows...
Informix Security Advisory:
http://www.defensecode.com/advisories/DC-2017-04-001_IBM_Informix_DB-Access_Buffer_Overflow.pdf
DB2 Security Advisory:
http://www.defensecode.com/advisories/IBM_DB2_Command_Line_Processor_Buffer_Overflow.pdf
Kind Regards,
DefenseCode Team
Nike Air Max Shoes
ReplyDeleteNike Air Vapormax Flyknit Shoes
Nike Roshe Run Shoes
Nike Air Presto Shoes
Nike Air Force Shoes
Nike Air Huarache Shoes
Nike LeBron James Basketball Shoes
Nike Kobe Bryant Basketball Shoes
Nike Kyrie Irving Basketball Shoes
Nike LeBron XIV ID Boots
Nike LeBron XIV ID Boots