IBM DB2 < 8.1 FixPak 12 EXCSAT Long MGRLVLLS Message Remote DoS

According to its version, the installation of IBM DB2 running on the remote host may crash when it attempts to process a specially crafted CONNECT or ATTACH request sent during the initial handshake process. An unauthenticated, remote attacker can exploit this issue to overflow a buffer and crash...

CVE-2006-3067

Multiple unspecified vulnerabilities in IBM DB2 Universal Database UDB before 8.1 FixPak 12 allow remote attackers to cause a denial of service application crash via a 1 "long column list" in the a REPLACE INTO and b INSERT INTO portions of the LOAD command or a 2 large number of values in an IN...

CVE-2006-3067

Multiple unspecified vulnerabilities in IBM DB2 Universal Database UDB before 8.1 FixPak 12 allow remote attackers to cause a denial of service application crash via a 1 "long column list" in the a REPLACE INTO and b INSERT INTO portions of the LOAD command or a 2 large number of values in an IN...

CVE-2006-3068

IBM DB2 Universal Database (UDB) before 8.2 FixPak 12 is affected by a remote denial of service due to a memory overwrite caused by sending "incorrect information" about the package name/creator. This CVE involves a flaw in how the database handles certain crafted input, leading to an application...

[SA20579] DB2 Universal Database Multiple Denial of Service Vulnerabilities

---------------------------------------------------------------------- Want to join the Secunia Security Team? Secunia offers a position as a security specialist, where your daily work involves reverse engineering of software and exploit code, auditing of source code, and analysis of vulnerabilit...

CVE-2003-1049

CVE-2003-1049 affects IBM DB2 Universal Database 7 before FixPak 12, where DMS directories are created with insecure 777 permissions, allowing local users to modify or delete certain DB2 files. Root cause: insecure directory permissions on DMS components. Impact as per CVSS: partial confidentiali...