CVE-2001-0051

IBM DB2 Universal Database <6.1 - Info Disclosure

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2001-0051. PoCs published by benjurry.

AI-analyzed exploit summary This entry describes a default credential vulnerability in IBM DB2 Universal Database, where default usernames and passwords are not changed during installation, allowing unauthorized access. It provides specific default credentials for Windows NT and Linux versions.

Description

IBM DB2 Universal Database version 6.1 creates an account with a default user name and password, which allows remote attackers to gain access to the database.

Exploits (1)

exploitdb WRITEUP VERIFIED

by benjurry · textremotemultiple

https://www.exploit-db.com/exploits/20472

View Code ZIP pw:eip

This entry describes a default credential vulnerability in IBM DB2 Universal Database, where default usernames and passwords are not changed during installation, allowing unauthorized access. It provides specific default credentials for Windows NT and Linux versions.

Classification

Writeup 90%

Attack Type

Auth Bypass

Complexity

Trivial

Reliability

Reliable

Target: IBM DB2 Universal Database (Windows NT, Linux)

No auth needed

Prerequisites: Knowledge of default credentials · Network access to the DB2 instance

MITRE ATT&CK

T1078 - Valid Accounts

devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (3)

Core 3

Core References

Vendor Advisory mailing-list x_refsource_bugtraq

http://www.securityfocus.com/archive/1/149222

Third Party Advisory, VDB Entry vdb-entry x_refsource_xf

https://exchange.xforce.ibmcloud.com/vulnerabilities/5662

Exploit, Vendor Advisory vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/2068

Scores

EPSS 0.0279

EPSS Percentile 84.5%

Details

Status published

Products (1)

ibm/db2_universal_database 6.1 (2 CPE variants)

Published Feb 16, 2001

Tracked Since Feb 18, 2026