Lucene search

[email protected]CVE-2005-3568

HistoryNov 16, 2005 - 7:42 a.m.

CVE-2005-3568

2005-11-1607:42:00

[email protected]

web.nvd.nist.gov

ibm

db2

content manager

8.2 fix pack 10

security vulnerability

denial of service

cve-2005-3568

6 Medium

AI Score

Confidence

High

2.1 Low

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:N/I:N/A:P

0.0004 Low

EPSS

Percentile

5.2%

JSON

db2fmp process in IBM DB2 Content Manager before 8.2 Fix Pack 10 allows local users to cause a denial of service (CPU consumption) by importing a corrupted Microsoft Excel file, aka “CORRUPTED EXEL FILE WILL CAUSE TEXT SEARCH PROCESS LOOPING.”

Affected configurations

NVD

Node

ibmdb2_content_managerMatch8.2fp1

ibmdb2_content_managerMatch8.2fp2

ibmdb2_content_managerMatch8.2fp3

ibmdb2_content_managerMatch8.2fp4

ibmdb2_content_managerMatch8.2fp5

ibmdb2_content_managerMatch8.2fp6

ibmdb2_content_managerMatch8.2fp7

ibmdb2_content_managerMatch8.2fp8

ibmdb2_content_managerMatch8.2fp9

CPENameOperatorVersion
ibm:db2_content_manageribm db2 content managereq8.2

CPE	Name	Operator	Version
ibm:db2_content_manager	ibm db2 content manager	eq	8.2

References

secunia.com/advisories/17388

www-1.ibm.com/support/docview.wss?uid=swg1IO00737

www.osvdb.org/20707

www.securityfocus.com/bid/15376

exchange.xforce.ibmcloud.com/vulnerabilities/23088

6 Medium

AI Score

Confidence

High

2.1 Low

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:N/I:N/A:P

0.0004 Low

EPSS

Percentile

5.2%

JSON

Related for CVE-2005-3568

cvelist1 nvd1 kaspersky1