Free and open-source vulnerability scanner
Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.
Install NowAvailable for macOS, Windows, and Linux
CVE-2009-0172
CVE information
Published
Last Modified
CVSSv2.0 Severity
Impact Analysis
Description
Unspecified vulnerability in IBM DB2 8 before FP17a, 9.1 before FP6a, and 9.5 before FP3a allows remote attackers to cause a denial of service (infinite loop) via a crafted CONNECT data stream..
CVSSv2.0 Score
- Severity
- Medium
- Base Score
- 5/10
- Exploit Score
- 10/10
- Access Vector
- Network
- Access Complexity
- Low
- Authentication Required
- None
- Impact Score
- 2.9/10
- Confidentiality Impact
- None
- Availability Impact
- Partial
- Integrity Impact
- None
Products Affected
CPE | Affected | Vulnerable | Excluding | Edit |
---|---|---|---|---|
cpe:2.3:a:ibm:db2_universal_database:9.5:fp1:solaris:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:ibm:db2_universal_database:9.1:fp4:windows:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:ibm:db2_universal_database:9.5:*:*:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:ibm:db2_universal_database:9.1:fp4:aix:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:ibm:db2_universal_database:9.1:fp4a:hp-ux:*:*:*:*: |
Yes
|
- | - | |
cpe:2.3:a:ibm:db2_universal_database:9.5:fp1:aix:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:ibm:db2_universal_database:9.5:fp1:windows:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:ibm:db2_universal_database:9.5:fp1:hp-ux:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:ibm:db2_universal_database:9.1:fp4:hp-ux:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:ibm:db2_universal_database:9.1:fp2:aix:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:ibm:db2_universal_database:9.1:fp3:aix:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:ibm:db2_universal_database:9.5:*:linux:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:ibm:db2_universal_database:9.1:fp4a:*:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:ibm:db2_universal_database:9.5:*:aix:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:ibm:db2_universal_database:9.1:fp4a:linux:*:*:*:*: |
Yes
|
- | - | |
cpe:2.3:a:ibm:db2_universal_database:9.1:*:linux:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:ibm:db2_universal_database:9.1:fp4:linux:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:ibm:db2_universal_database:9.1:fp2:solaris:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:ibm:db2_universal_database:9.5:fp1:linux:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:ibm:db2_universal_database:9.5:*:solaris:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:ibm:db2_universal_database:9.1:fp2:hp-ux:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:ibm:db2_universal_database:9.5:*:windows:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:ibm:db2_universal_database:9.1:fp3:hp-ux:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:ibm:db2_universal_database:9.1:fp2:windows:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:ibm:db2_universal_database:9.5:*:hp-ux:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:ibm:db2_universal_database:9.1:*:hp-ux:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:ibm:db2_universal_database:9.1:fp3:solaris:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:ibm:db2_universal_database:9.1:fp4a:windows:*:*:*: |
Yes
|
- | - | |
cpe:2.3:a:ibm:db2_universal_database:9.1:fp2:linux:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:ibm:db2_universal_database:9.1:ga:*:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:ibm:db2_universal_database:9.1:*:solaris:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:ibm:db2_universal_database:9.1:*:windows:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:ibm:db2_universal_database:9.1:fp4:*:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:ibm:db2_universal_database:9.1:*:aix:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:a:ibm:db2_universal_database:9.1:fp2:*:*:*:*:*:* |
Yes
|
- | - |
References
- http://www-1.ibm.com/support/docview.wss?uid=swg1IZ37697
- http://www-01.ibm.com/support/docview.wss?uid=swg21363936
- http://secunia.com/advisories/33529
- http://securitytracker.com/id?1021591
- http://www.securityfocus.com/bid/33258
- http://www-1.ibm.com/support/docview.wss?uid=swg1IZ36534
- ftp://ftp.software.ibm.com/ps/products/db2/fixes/english-us/aparlist/db2_v91/APARLIST.TX
- http://www-01.ibm.com/support/docview.wss?uid=swg1IZ37696
- ftp://ftp.software.ibm.com/ps/products/db2/fixes/english-us/aparlist/db2_v95/APARLIST.TX
- ftp://ftp.software.ibm.com/ps/products/db2/fixes/english-us/aparlist/db2_v82/APARLIST.TX
- http://www.vupen.com/english/advisories/2009/0137
- https://exchange.xforce.ibmcloud.com/vulnerabilities/47931