CVE-2009-1905

2009-06-03T21:00:00
ID CVE-2009-1905
Type cve
Reporter cve@mitre.org
Modified 2017-08-17T01:30:00

Description

The Common Code Infrastructure component in IBM DB2 8 before FP17, 9.1 before FP7, and 9.5 before FP4, when LDAP security (aka IBMLDAPauthserver) and anonymous bind are enabled, allows remote attackers to bypass password authentication and establish a database connection via unspecified vectors.