Описание
IBM DB2 UDB 9.1 before Fixpak 4 does not properly manage storage of a list containing authentication information, which might allow attackers to cause a denial of service (instance crash) or trigger memory corruption. NOTE: the vendor description of this issue is too vague to be certain that it is security-related.
Ссылки
- PatchVendor Advisory
- Patch
- Vendor Advisory
- Vendor Advisory
- PatchVendor Advisory
- Patch
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 9.1 (включая)
Одно из
cpe:2.3:a:ibm:db2:*:fp3a:*:*:*:*:*:*
cpe:2.3:a:ibm:db2:9.1:fp1:*:*:*:*:*:*
cpe:2.3:a:ibm:db2:9.1:fp2:*:*:*:*:*:*
cpe:2.3:a:ibm:db2:9.1:fp2a:*:*:*:*:*:*
cpe:2.3:a:ibm:db2:9.1:fp3:*:*:*:*:*:*
EPSS
Процентиль: 76%
0.0097
Низкий
7.8 High
CVSS2
Дефекты
CWE-119
Связанные уязвимости
github
почти 4 года назад
IBM DB2 UDB 9.1 before Fixpak 4 does not properly manage storage of a list containing authentication information, which might allow attackers to cause a denial of service (instance crash) or trigger memory corruption. NOTE: the vendor description of this issue is too vague to be certain that it is security-related.
EPSS
Процентиль: 76%
0.0097
Низкий
7.8 High
CVSS2
Дефекты
CWE-119