Lucene search

[email protected]CVE-2005-3643

HistoryOct 03, 2022 - 4:22 p.m.

CVE-2005-3643

2022-10-0316:22:38

[email protected]

web.nvd.nist.gov

ibm

db2

windows xp

authentication bypass

remote attack

security vulnerability

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.2 High

AI Score

Confidence

Low

0.004 Low

EPSS

Percentile

74.0%

JSON

IBM DB2 Database server running on Windows XP with Simple File Sharing enabled, allows remote attackers to bypass authentication and log on to the guest account without supplying a password.

Affected configurations

NVD

Node

ibmdb2_universal_databaseMatch7.1linux

ibmdb2_universal_databaseMatch7.2linux

ibmdb2_universal_databaseMatch8.0linux

ibmdb2_universal_databaseMatch8.1aix

ibmdb2_universal_databaseMatch8.1.4

ibmdb2_universal_databaseMatch8.1.5

ibmdb2_universal_databaseMatch8.1.6

ibmdb2_universal_databaseMatch8.1.6c

ibmdb2_universal_databaseMatch8.1.7

ibmdb2_universal_databaseMatch8.1.7b

ibmdb2_universal_databaseMatch8.1.8

ibmdb2_universal_databaseMatch8.1.8a

ibmdb2_universal_databaseMatch8.1.9

ibmdb2_universal_databaseMatch8.1.9a

CPENameOperatorVersion
ibm:db2_universal_databaseibm db2 universal databaseeq7.1
ibm:db2_universal_databaseibm db2 universal databaseeq7.2
ibm:db2_universal_databaseibm db2 universal databaseeq8.0
ibm:db2_universal_databaseibm db2 universal databaseeq8.1
ibm:db2_universal_databaseibm db2 universal databaseeq8.1.4
ibm:db2_universal_databaseibm db2 universal databaseeq8.1.5
ibm:db2_universal_databaseibm db2 universal databaseeq8.1.6
ibm:db2_universal_databaseibm db2 universal databaseeq8.1.6c
ibm:db2_universal_databaseibm db2 universal databaseeq8.1.7
ibm:db2_universal_databaseibm db2 universal databaseeq8.1.7b

CPE	Name	Operator	Version
ibm:db2_universal_database	ibm db2 universal database	eq	7.1
ibm:db2_universal_database	ibm db2 universal database	eq	7.2
ibm:db2_universal_database	ibm db2 universal database	eq	8.0
ibm:db2_universal_database	ibm db2 universal database	eq	8.1
ibm:db2_universal_database	ibm db2 universal database	eq	8.1.4
ibm:db2_universal_database	ibm db2 universal database	eq	8.1.5
ibm:db2_universal_database	ibm db2 universal database	eq	8.1.6
ibm:db2_universal_database	ibm db2 universal database	eq	8.1.6c
ibm:db2_universal_database	ibm db2 universal database	eq	8.1.7
ibm:db2_universal_database	ibm db2 universal database	eq	8.1.7b

Rows per page:

1-10 of 141

References

www.ngssoftware.com/papers/database-on-xp.pdf

www.securityfocus.com/bid/15452

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.2 High

AI Score

Confidence

Low

0.004 Low

EPSS

Percentile

74.0%

JSON

Related for CVE-2005-3643

nvd1 cvelist1