Lucene search

K
ubuntucveUbuntu.comUB:CVE-2012-2180
HistoryJun 20, 2012 - 12:00 a.m.

CVE-2012-2180

2012-06-2000:00:00
ubuntu.com
ubuntu.com
12

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

EPSS

0.013

Percentile

85.7%

The chaining functionality in the Distributed Relational Database
Architecture (DRDA) module in IBM DB2 9.7 before FP6 and 9.8 before FP5
allows remote attackers to cause a denial of service (NULL pointer
dereference, and resource consumption or daemon crash) via a crafted
request.

Notes

Author Note
jdstrand contacted bizdev on 2012-06-21
tyhicks Fixed in 9.7 FP6

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

EPSS

0.013

Percentile

85.7%

Related for UB:CVE-2012-2180