IBM Security Guardium Database Activity Monitor appliance could allow a local user to inject commands that would be executed as root.Referenceshttp://www.securityfocus.com/bid/95145http://www.ibm.com/support/docview.wss?uid=swg21995657
