Db2 Universal Database@8.1 Security Vulnerabilities and Issues — Db2 Universal Database@8.1 CVE List

Lucene search

IbmDb2 Universal Database8.1

9 matches found

CVE•added 2006/12/19 8:28 p.m.•55 views

CVE-2006-6638

IBM DB2 8.1 before FixPak 14 allows remote attackers to cause a denial of service via a crafted SQLJRA packet, which causes a NULL pointer dereference in the sqle_db2ra_as_recvrequest function in DB2ENGN.DLL, a different issue than CVE-2006-4257.

5CVSS6.2AI score0.0121EPSS

CVE•added 2006/03/19 11:0 p.m.•47 views

CVE-2005-4736

IBM DB2 Universal Database (UDB) 820 before 8.2 FP10 allows remote authenticated users to cause a denial of service (disk consumption) via a hash join (hsjn) that triggers an infinite loop in sqlri_hsjnFlushBlocks.

6.8CVSS6.3AI score0.00685EPSS

CVE•added 2006/06/19 10:2 a.m.•46 views

CVE-2006-3066

Buffer overflow in the TCP/IP listener in IBM DB2 Universal Database (UDB) before 8.1 FixPak 12 allows remote attackers to cause a denial of service (application crash) via a long MGRLVLLS message inside of an EXCSAT message when establishing a connection.

5CVSS6.7AI score0.01562EPSS

CVE•added 2006/03/19 11:0 p.m.•43 views

CVE-2005-4735

IBM DB2 Universal Database (UDB) 810 before 8.1 FP10 allows remote authenticated users to cause a denial of service (application crash) via (1) certain equality predicates that trigger self-removal, aka IY70808; and (2) a query with more than 32000 elements in the IN-list, aka LI70817.

6.8CVSS6.4AI score0.00636EPSS

CVE•added 2006/06/19 10:2 a.m.•43 views

CVE-2006-3068

IBM DB2 Universal Database (UDB) before 8.2 FixPak 12 allows remote attackers to cause a denial of service (application crash) by sending "incorrect information ... regarding the package name/creator," which leads to a "memory overwrite."

5CVSS6.8AI score0.0092EPSS

CVE•added 2006/03/19 11:0 p.m.•42 views

CVE-2005-4737

IBM DB2 Universal Database (UDB) 820 before ESE AIX 5765F4100 allows remote authenticated users to cause a denial of service (CPU consumption) by "abnormally" terminating a connection, which prevents db2agents from being properly cleared.

7.5CVSS6.4AI score0.00641EPSS

CVE•added 2006/03/19 11:0 p.m.•38 views

CVE-2005-4738

IBM DB2 Universal Database (UDB) 810 before ESE AIX 5765F4100 does not ensure that a user has execute privileges before permitting object creation based on routines, which allows remote authenticated users to gain privileges.

6.5CVSS6.9AI score0.00546EPSS

CVE•added 2006/06/19 10:2 a.m.•38 views

CVE-2006-3067

Multiple unspecified vulnerabilities in IBM DB2 Universal Database (UDB) before 8.1 FixPak 12 allow remote attackers to cause a denial of service (application crash) via a (1) "long column list" in the (a) REPLACE INTO and (b) INSERT INTO portions of the LOAD command or a (2) large number of values...

5CVSS7.5AI score0.01628EPSS

CVE•added 2006/03/19 11:0 p.m.•36 views

CVE-2005-4739

IBM DB2 Universal Database (UDB) 820 before version 8 FixPak 10 (s050811) allows remote authenticated users to cause a denial of service (application crash) by using a table function for an instance of snapshot_tbreorg, which triggers a trap in sqlnr_EStoE_action.

6.8CVSS6.4AI score0.00583EPSS