Lucene search
HistoryAug 28, 2008 - 5:41 p.m.
CVE-2008-3858
ibm
db2
9.1
denial of service
vulnerability
6.6 Medium
AI Score
Confidence
Low
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
0.013 Low
EPSS
Percentile
85.9%
The Downlevel DB2RA Support component in IBM DB2 9.1 before Fixpak 4a allows remote attackers to cause a denial of service (instance crash) via a crafted CONNECT data stream that simulates a V7 client connect request.
| CPE | Name | Operator | Version |
|---|---|---|---|
| ibm:db2_universal_database | ibm db2 universal database | eq | 9.1 |
Related
cvelist
cvelist
CVE-2008-3858
2008-08-28 17:00:00
CVE-2008-3958
2008-09-09 14:00:00
prion
prion
Cross site request forgery (csrf)
2008-08-28 17:41:00
Design/Logic Flaw
2008-09-11 01:13:00
cve
cve
CVE-2008-3958
2008-09-11 01:13:00
6.6 Medium
AI Score
Confidence
Low
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
0.013 Low
EPSS
Percentile
85.9%
Related for CVE-2008-3858