Lucene search

[email protected]CVE-2009-0172

HistoryJan 16, 2009 - 9:30 p.m.

CVE-2009-0172

2009-01-1621:30:00

CWE-20

[email protected]

web.nvd.nist.gov

ibm db2

vulnerability

denial of service

cve-2009-0172

nvd

6.7 Medium

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.233 Low

EPSS

Percentile

96.5%

JSON

Unspecified vulnerability in IBM DB2 8 before FP17a, 9.1 before FP6a, and 9.5 before FP3a allows remote attackers to cause a denial of service (infinite loop) via a crafted CONNECT data stream.

CPENameOperatorVersion
ibm:db2_universal_databaseibm db2 universal databaseeq9.5
ibm:db2_universal_databaseibm db2 universal databaseeq9.1

CPE	Name	Operator	Version
ibm:db2_universal_database	ibm db2 universal database	eq	9.5
ibm:db2_universal_database	ibm db2 universal database	eq	9.1

References

ftp://ftp.software.ibm.com/ps/products/db2/fixes/english-us/aparlist/db2_v82/APARLIST.TXT

ftp://ftp.software.ibm.com/ps/products/db2/fixes/english-us/aparlist/db2_v91/APARLIST.TXT

ftp://ftp.software.ibm.com/ps/products/db2/fixes/english-us/aparlist/db2_v95/APARLIST.TXT

secunia.com/advisories/33529

securitytracker.com/id?1021591

www-01.ibm.com/support/docview.wss?uid=swg1IZ37696

www-01.ibm.com/support/docview.wss?uid=swg21363936

www-1.ibm.com/support/docview.wss?uid=swg1IZ36534

www-1.ibm.com/support/docview.wss?uid=swg1IZ37697

www.securityfocus.com/bid/33258

www.vupen.com/english/advisories/2009/0137

exchange.xforce.ibmcloud.com/vulnerabilities/47931

6.7 Medium

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.233 Low

EPSS

Percentile

96.5%

JSON

Related for CVE-2009-0172

checkpoint_advisories1 prion1 cvelist1