Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveMitreCVE-2009-1906
HistoryJun 03, 2009 - 9:00 p.m.

CVE-2009-1906

2009-06-0321:00:00
mitre
web.nvd.nist.gov
29
ibm
db2
drda services
denial of service
memory corruption
application crash
nvd
cve-2009-1906

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

AI Score

6.6

Confidence

Low

EPSS

0.006

Percentile

78.6%

JSON

The DRDA Services component in IBM DB2 9.1 before FP7 and 9.5 before FP4 allows remote attackers to cause a denial of service (memory corruption and application crash) via an IPv6 address in the correlation token in the APPID string, as demonstrated by an APPID string sent by the third-party DataDirect JDBC driver 3.7.32.

Affected configurations

Nvd
Node
ibmdb2Match9.1fp1
OR
ibmdb2Match9.1fp2
OR
ibmdb2Match9.1fp3
OR
ibmdb2Match9.1fp3a
OR
ibmdb2Match9.1fp4
OR
ibmdb2Match9.1fp4a
OR
ibmdb2Match9.1fp5
OR
ibmdb2Match9.1fp6
OR
ibmdb2Match9.1fp6a
OR
ibmdb2Match9.5fp1
OR
ibmdb2Match9.5fp2
OR
ibmdb2Match9.5fp3
VendorProductVersionCPE
ibmdb29.1cpe:2.3:a:ibm:db2:9.1:fp1:*:*:*:*:*:*
ibmdb29.1cpe:2.3:a:ibm:db2:9.1:fp2:*:*:*:*:*:*
ibmdb29.1cpe:2.3:a:ibm:db2:9.1:fp3:*:*:*:*:*:*
ibmdb29.1cpe:2.3:a:ibm:db2:9.1:fp3a:*:*:*:*:*:*
ibmdb29.1cpe:2.3:a:ibm:db2:9.1:fp4:*:*:*:*:*:*
ibmdb29.1cpe:2.3:a:ibm:db2:9.1:fp4a:*:*:*:*:*:*
ibmdb29.1cpe:2.3:a:ibm:db2:9.1:fp5:*:*:*:*:*:*
ibmdb29.1cpe:2.3:a:ibm:db2:9.1:fp6:*:*:*:*:*:*
ibmdb29.1cpe:2.3:a:ibm:db2:9.1:fp6a:*:*:*:*:*:*
ibmdb29.5cpe:2.3:a:ibm:db2:9.5:fp1:*:*:*:*:*:*
Rows per page:
1-10 of 121

Related

prion 1
cvelist 1
nvd 1
openvas 4
nessus 2
prion
prion
Memory corruption
2009-06-03 21:00:00
cvelist
cvelist
CVE-2009-1906
2009-06-03 20:35:00
nvd
nvd
CVE-2009-1906
2009-06-03 21:00:00
openvas
openvas
IBM DB2 Multiple Vulnerabilities (Linux)
2009-06-30 00:00:00
IBM DB2 Multiple Vulnerabilities (Windows)
2009-06-30 00:00:00
IBM Db2 Multiple Vulnerabilities - Linux
2009-06-30 00:00:00
nessus
nessus
IBM DB2 9.1 < Fix Pack 7 Multiple Vulnerabilities
2009-04-22 00:00:00
IBM DB2 < 9.5 Fix Pack 4 Multiple Vulnerabilities
2009-06-03 00:00:00

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

AI Score

6.6

Confidence

Low

EPSS

0.006

Percentile

78.6%

JSON
Related for CVE-2009-1906
prion1cvelist1nvd1openvas4nessus2