3 matches found
IBM DB2 Universal Database XML Query Buffer Overflow (CVE-2008-3854)
IBM DB2 Database is a relational database management system made available for Unix, Windows, and Linux platforms. The product consists of a set of services that work together to provide data processing functionalities. DB2 can be administrated from command-line tools or GUI tools. IBM DB2 runs...
Team SHATTER Security Advisory: IBM DB2 UDB - Buffer overrun in XMLQUERY and XMLEXISTS
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Team SHATTER Security Advisory Buffer overrun in XMLQUERY and XMLEXISTS September 15th 2008 Risk Level: High Affected versions: IBM DB2 Database Server v9.1 and 9.5 on Windows platform. Remote exploitable: Yes Authentication to Database Server is need...
CVE-2008-3854
CVE-2008-3854 affects IBM DB2 UDB (DB2 9.1 before Fix Pak 5 and 9.5 before Fixpak 1). The vulnerability consists of multiple stack-based buffer overflows in XML-related SQL semantics (XMLQUERY, XMLEXISTS, XMLTABLE) and the sqlrlaka function, allowing remote attackers to cause a denial of service ...