Nefarious local users are likely to exploit shared memory flaw that IBM fixed in its Db2 data management products, leading to information disclosure.

Tracked as CVE-2020-4414, the flaw was exposed by researchers from Trustwave, which is caused by the dearth of overt memory protections for the shared memory used by Db2 trace facility.

A wicked local user could abuse the issue to attain read and write access to that memory, possibly accessing sensitive data. The fault can also be exploited to adjust the functionality of the trace subsystem, activating a denial of service condition in the database.

“In Windows, launch Process Explorer or other any similar tool to check open handles of Db2 main process. As you can see below, there are absolutely no permissions assigned to the shared memory so that anyone can read from and write to it.” reads the post published by Trustwave. “In the end this means that an unprivileged local user can abuse this to cause a denial of service condition simply by writing incorrect data over that memory section.”

A hacker could exploit the fault by sending specially created requests to susceptible installs. The flaw affects IBM Db2 for Linux, UNIX and Windows (including Db2 Connect Server), versions 9.7, 10.1, 10.5, 11.1, and 11.5.

It’s recommended that companies apply security fixes to their IBM Db2 installs at the earliest.

In June, Trustwave researcher revealed a similar vulnerability in Cisco Webex Meetings client for Windows, tracked as CVE-2020-3347, that could let local genuine attackers gain access to important information.

 

Leave a Reply

Your email address will not be published. Required fields are marked *