CVE-2012-2194 | HackTesting

Directory traversal vulnerability in the SQLJ.DB2_INSTALL_JAR stored procedure in IBM DB2 9.1 before FP12, 9.5 through FP9, 9.7 through FP6, 9.8 through FP5, and 10.1 allows remote attackers to replace JAR files via unspecified vectors.

References

http://secunia.com/advisories/49919

http://www.securityfocus.com/bid/54487

http://www-01.ibm.com/support/docview.wss?uid=swg21600837

http://www-01.ibm.com/support/docview.wss?uid=swg1IC84711

http://www-01.ibm.com/support/docview.wss?uid=swg1IC84019

http://www-01.ibm.com/support/docview.wss?uid=swg1IC84716

http://www-01.ibm.com/support/docview.wss?uid=swg1IC84714

http://www-01.ibm.com/support/docview.wss?uid=swg1IC84715