Db2 Universal Database@8.1.6 Security Vulnerabilities and Issues — Db2 Universal Database@8.1.6 CVE List

Lucene search

IbmDb2 Universal Database8.1.6

9 matches found

CVE•added 2006/12/19 8:28 p.m.•55 views

CVE-2006-6638

IBM DB2 8.1 before FixPak 14 allows remote attackers to cause a denial of service via a crafted SQLJRA packet, which causes a NULL pointer dereference in the sqle_db2ra_as_recvrequest function in DB2ENGN.DLL, a different issue than CVE-2006-4257.

5CVSS6.2AI score0.0121EPSS

CVE•added 2006/03/19 11:0 p.m.•47 views

CVE-2005-4736

IBM DB2 Universal Database (UDB) 820 before 8.2 FP10 allows remote authenticated users to cause a denial of service (disk consumption) via a hash join (hsjn) that triggers an infinite loop in sqlri_hsjnFlushBlocks.

6.8CVSS6.3AI score0.00685EPSS

CVE•added 2006/06/19 10:2 a.m.•46 views

CVE-2006-3066

Buffer overflow in the TCP/IP listener in IBM DB2 Universal Database (UDB) before 8.1 FixPak 12 allows remote attackers to cause a denial of service (application crash) via a long MGRLVLLS message inside of an EXCSAT message when establishing a connection.

5CVSS6.7AI score0.01562EPSS

CVE•added 2006/03/19 11:0 p.m.•43 views

CVE-2005-4735

IBM DB2 Universal Database (UDB) 810 before 8.1 FP10 allows remote authenticated users to cause a denial of service (application crash) via (1) certain equality predicates that trigger self-removal, aka IY70808; and (2) a query with more than 32000 elements in the IN-list, aka LI70817.

6.8CVSS6.4AI score0.00636EPSS

CVE•added 2007/02/23 10:28 p.m.•43 views

CVE-2007-1086

Unspecified binaries in IBM DB2 8.x before 8.1 FixPak 15 and 9.1 before Fix Pack 2 allow local users to create or modify arbitrary files via unspecified environment variables related to "unsafe file access."

7.2CVSS6.3AI score0.00068EPSS

CVE•added 2006/03/19 11:0 p.m.•42 views

CVE-2005-4737

IBM DB2 Universal Database (UDB) 820 before ESE AIX 5765F4100 allows remote authenticated users to cause a denial of service (CPU consumption) by "abnormally" terminating a connection, which prevents db2agents from being properly cleared.

7.5CVSS6.4AI score0.00641EPSS

CVE•added 2005/11/16 9:22 p.m.•41 views

CVE-2005-3643

IBM DB2 Database server running on Windows XP with Simple File Sharing enabled, allows remote attackers to bypass authentication and log on to the guest account without supplying a password.

7.5CVSS7.2AI score0.00422EPSS

CVE•added 2006/03/19 11:0 p.m.•38 views

CVE-2005-4738

IBM DB2 Universal Database (UDB) 810 before ESE AIX 5765F4100 does not ensure that a user has execute privileges before permitting object creation based on routines, which allows remote authenticated users to gain privileges.

6.5CVSS6.9AI score0.00546EPSS

CVE•added 2006/03/19 11:0 p.m.•36 views

CVE-2005-4739

IBM DB2 Universal Database (UDB) 820 before version 8 FixPak 10 (s050811) allows remote authenticated users to cause a denial of service (application crash) by using a table function for an instance of snapshot_tbreorg, which triggers a trap in sqlnr_EStoE_action.

6.8CVSS6.4AI score0.00583EPSS