Lucene search
K

19 matches found

OpenVAS
OpenVAS
added 2017/12/15 12:0 a.m.29 views

IBM Db2 Stack Buffer Overflow Vulnerability (Dec 2017)

IBM Db2 is prone to stack buffer overflow vulnerability. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:ibm:db2"; ifdescription...

8.5CVSS6.8AI score0.05044EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2017/06/29 12:0 a.m.30 views

IBM Db2 Command Line Processor Buffer Overflow Vulnerability (Jun 2017)

IBM Db2 is prone to a buffer overflow vulnerability. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:ibm:db2"; ifdescription...

7.3CVSS7.4AI score0.01489EPSS
Exploits3References2
Tenable Nessus
Tenable Nessus
added 2015/07/18 12:0 a.m.220 views

IBM DB2 9.7 < Fix Pack 11 Multiple Vulnerabilities (Bar Mitzvah) (FREAK) (TLS POODLE)

According to its version, the installation of IBM DB2 9.7 running on the remote host is prior to Fix Pack 11. It is, therefore, affected by multiple vulnerabilities : - An information disclosure vulnerability exists in the monitoring and audit features that occurs when handling a specially crafte...

8CVSS7.2AI score0.74006EPSS
Exploits0References22
Tenable Nessus
Tenable Nessus
added 2014/11/14 12:0 a.m.52 views

IBM DB2 9.7 < Fix Pack 10 Multiple Vulnerabilities

According to its version, the installation of IBM DB2 9.7 running on the remote host is affected by the following vulnerabilities : - An input-validation error exists related to handling the 'ALTER MODULE' statement that allows buffer overflows. CVE-2014-3094 - An error exists related to handling...

8.5CVSS7.1AI score0.05044EPSS
Exploits0References12
NVD
NVD
added 2014/05/30 11:55 p.m.24 views

CVE-2013-6744

The Stored Procedure infrastructure in IBM DB2 9.5, 9.7 before FP9a, 10.1 before FP3a, and 10.5 before FP3a on Windows allows remote authenticated users to gain privileges by leveraging the CONNECT privilege and the CREATEEXTERNALROUTINE authority...

8.5CVSS6.1AI score0.02726EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2012/10/25 12:0 a.m.66 views

IBM DB2 9.7 < Fix Pack 7 Multiple Vulnerabilities

According to its version, the installation of IBM DB2 9.7 running on the remote host is prior to Fix Pack 7. It is, therefore, affected by one or more of the following issues : - An error exists related to the stored procedure 'SQLJ.DB2INSTALLJAR' that can allow 'JAR' files to be overwritten. Not...

8.5CVSS5.9AI score0.04908EPSS
Exploits0References9
Prion
Prion
added 2012/08/24 10:36 a.m.20 views

Design/Logic Flaw

Unspecified vulnerability in the XML feature in IBM DB2 9.7 before FP6 on Linux, UNIX, and Windows allows remote authenticated users to read arbitrary XML files via unknown vectors...

3.5CVSS6.4AI score0.01209EPSS
Exploits0References2Affected Software1
UbuntuCve
UbuntuCve
added 2012/06/20 10:27 a.m.23 views

CVE-2012-2180

The chaining functionality in the Distributed Relational Database Architecture DRDA module in IBM DB2 9.7 before FP6 and 9.8 before FP5 allows remote attackers to cause a denial of service NULL pointer dereference, and resource consumption or daemon crash via a crafted request...

4.3CVSS5.9AI score0.02039EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2011/11/21 12:0 a.m.16 views

IBM DB2 9.7 < 9.7 Fix Pack 5 Local DoS

Binary data 6099.prm...

1.5CVSS7.3AI score0.00291EPSS
Exploits0References3
NVD
NVD
added 2011/11/09 11:55 p.m.22 views

CVE-2011-1373

Unspecified vulnerability in IBM DB2 9.7 before FP5 on UNIX, when the Self Tuning Memory Manager STMM feature and the AUTOMATIC DATABASEMEMORY setting are configured, allows local users to cause a denial of service daemon crash via unknown vectors...

1.5CVSS5.9AI score0.00291EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2011/11/09 11:55 p.m.31 views

CVE-2011-1373

Unspecified vulnerability in IBM DB2 9.7 before FP5 on UNIX, when the Self Tuning Memory Manager STMM feature and the AUTOMATIC DATABASEMEMORY setting are configured, allows local users to cause a denial of service daemon crash via unknown vectors...

1.5CVSS7.1AI score0.00291EPSS
Exploits0References2
Prion
Prion
added 2010/10/05 6:0 p.m.27 views

Stack overflow

Stack-based buffer overflow in the validateUser implementation in the com.ibm.db2.das.core.DasSysCmd function in db2dasrrm in the DB2 Administration Server DAS component in IBM DB2 9.1 before FP10, 9.5 before FP6a, and 9.7 before FP3 allows remote attackers to execute arbitrary code via a long...

10CVSS8.5AI score0.09582EPSS
Exploits0References10Affected Software1
Cvelist
Cvelist
added 2010/09/20 9:0 p.m.31 views

CVE-2010-3474

IBM DB2 9.7 before FP3 does not perform the expected drops or invalidations of dependent functions upon a loss of privileges by the functions' owners, which allows remote authenticated users to bypass intended access restrictions via calls to these functions, a different vulnerability than...

5.8AI score0.02591EPSS
Exploits0References9
Prion
Prion
added 2010/08/31 10:0 p.m.21 views

Code injection

IBM DB2 9.7 before FP2, when AUTOREVAL is IMMEDIATE, allows remote authenticated users to cause a denial of service loss of privileges to a view owner by defining a dependent view...

3.5CVSS6.5AI score0.01448EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2010/02/02 6:30 p.m.19 views

CVE-2010-0472

kuddb2 in Tivoli Monitoring for DB2, as distributed in IBM DB2 9.7 FP1 on Linux, allows remote attackers to cause a denial of service daemon crash via a certain byte sequence...

5CVSS6.4AI score0.02283EPSS
Exploits1References5
OpenVAS
OpenVAS
added 2009/12/23 12:0 a.m.36 views

IBM DB2 Client Interfaces component Unspecified Vulnerabilities (Windows)

The host is installed with IBM DB2 and is prone to unspecified vulnerabilities. OpenVAS Vulnerability Test $Id: secpodibmdb2clntintrfcunspecifiedvulnwin.nasl 5055 2017-01-20 14:08:39Z teissa $ IBM DB2 Client Interfaces component Unspecified Vulnerabilities Windows Authors: Antu Sanadi Copyright:...

6.4CVSS1AI score0.02653EPSS
Exploits1References4
OpenVAS
OpenVAS
added 2009/12/23 12:0 a.m.29 views

IBM DB2 Self Tuning Memory Manager (STMM) DOS Vulnerability (Windows)

The host is installed with IBM DB2 and is prone to Denial of Service vulnerability. OpenVAS Vulnerability Test $Id: secpodibmdb2stmmdosvulnwin.nasl 5055 2017-01-20 14:08:39Z teissa $ IBM DB2 Self Tuning Memory Manager STMM DOS Vulnerability Windows Authors: Antu Sanadi Updated By: Antu Sanadi on...

6.5CVSS0.2AI score0.01567EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2009/12/23 12:0 a.m.21 views

IBM Db2 Multiple Unspecified Vulnerabilities - Windows

IBM Db2 is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:ibm:db2"; ifdescription...

7.2CVSS6.2AI score0.02352EPSS
Exploits1References6
Prion
Prion
added 2009/12/16 6:30 p.m.23 views

Code injection

The Common Code Infrastructure component in IBM DB2 9.5 before FP5 and 9.7 before FP1 does not properly validate the size of a memory pool during a creation attempt, which allows attackers to cause a denial of service memory consumption via unspecified vectors...

5CVSS6.8AI score0.02352EPSS
Exploits0References9Affected Software1
Rows per page
Query Builder