Sun released an alert about a memory leak in the sqlcctcpgetbuffer process of DB2: http://www-1.ibm.com/support/docview.wss?rs=71&context=SSEPGG&dc=D600&uid=swg21205583&loc=en_US&cs=utf-8&lang=en
I'm wondering, is this a vulnerability or not? Is it possible for an attacker to exploit this? If so, how would this be possible? Does the attacker needs an account? Maybe someone can help me with this one. Thanks. _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
