Lucene search

PRIOn knowledge basePRION:CVE-2008-4691

HistoryOct 22, 2008 - 6:00 p.m.

Code injection

2008-10-2218:00:00

PRIOn knowledge base

www.prio-n.com

6.5 Medium

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.002 Low

EPSS

Percentile

60.9%

JSON

Unspecified vulnerability in the SQLNLS_UNPADDEDCHARLEN function in the New Compiler (aka Starburst derived compiler) component in the server in IBM DB2 9.1 before FP6 allows attackers to cause a denial of service (segmentation violation and trap) via unknown vectors.

CPENameOperatorVersion
db2eq9.1 fp4
db2eq9.1 fp1
db2eq9.1
db2eq9.1 fp3
db2eq9.1 fp3a
db2le9.1
db2eq9.1 fp2
db2eq9.1 fp4a

Name	Operator	Version
db2	eq	9.1 fp4
db2	eq	9.1 fp1
db2	eq	9.1
db2	eq	9.1 fp3
db2	eq	9.1 fp3a
db2	le	9.1
db2	eq	9.1 fp2
db2	eq	9.1 fp4a

References

ftp://ftp.software.ibm.com/ps/products/db2/fixes/english-us/aparlist/db2_v91/APARLIST.TXT

secunia.com/advisories/32368

www-01.ibm.com/support/docview.wss?uid=swg1LI73364

www-01.ibm.com/support/docview.wss?uid=swg27013892

www.vupen.com/english/advisories/2008/2893

6.5 Medium

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.002 Low

EPSS

Percentile

60.9%

JSON

Related for PRION:CVE-2008-4691