5

CVE-2009-0173

Unspecified vulnerability in the server in IBM DB2 8 before FP17a, 9.1 before FP6a, and 9.5 before FP3a allows remote authenticated users to cause a denial of service (trap) via a crafted data stream.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
IbmDb2 Universal Database Version9.1 Editionaix
IbmDb2 Universal Database Version9.1 Editionhp-ux
IbmDb2 Universal Database Version9.1 Editionlinux
IbmDb2 Universal Database Version9.1 Editionsolaris
IbmDb2 Universal Database Version9.1 Editionwindows
IbmDb2 Universal Database Version9.1 Updatefp2
IbmDb2 Universal Database Version9.1 Updatefp2 Editionaix
IbmDb2 Universal Database Version9.1 Updatefp2 Editionhp-ux
IbmDb2 Universal Database Version9.1 Updatefp2 Editionlinux
IbmDb2 Universal Database Version9.1 Updatefp2 Editionsolaris
IbmDb2 Universal Database Version9.1 Updatefp2 Editionwindows
IbmDb2 Universal Database Version9.1 Updatefp3 Editionaix
IbmDb2 Universal Database Version9.1 Updatefp3 Editionhp-ux
IbmDb2 Universal Database Version9.1 Updatefp3 Editionsolaris
IbmDb2 Universal Database Version9.1 Updatefp4
IbmDb2 Universal Database Version9.1 Updatefp4 Editionaix
IbmDb2 Universal Database Version9.1 Updatefp4 Editionhp-ux
IbmDb2 Universal Database Version9.1 Updatefp4 Editionlinux
IbmDb2 Universal Database Version9.1 Updatefp4 Editionwindows
IbmDb2 Universal Database Version9.1 Updatefp4a
IbmDb2 Universal Database Version9.1 Updatefp4a Editionhp-ux
IbmDb2 Universal Database Version9.1 Updatefp4a Editionlinux
IbmDb2 Universal Database Version9.1 Updatefp4a Editionwindows
IbmDb2 Universal Database Version9.1 Updatega
IbmDb2 Universal Database Version9.5
IbmDb2 Universal Database Version9.5 Editionaix
IbmDb2 Universal Database Version9.5 Editionhp-ux
IbmDb2 Universal Database Version9.5 Editionlinux
IbmDb2 Universal Database Version9.5 Editionsolaris
IbmDb2 Universal Database Version9.5 Editionwindows
IbmDb2 Universal Database Version9.5 Updatefp1 Editionaix
IbmDb2 Universal Database Version9.5 Updatefp1 Editionhp-ux
IbmDb2 Universal Database Version9.5 Updatefp1 Editionlinux
IbmDb2 Universal Database Version9.5 Updatefp1 Editionsolaris
IbmDb2 Universal Database Version9.5 Updatefp1 Editionwindows
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 3.01% 0.857
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5 10 2.9
AV:N/AC:L/Au:N/C:N/I:N/A:P
CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

ftp://ftp.software.ibm.com/ps/products/db2/fixes/english-us/aparlist/db2_v82/APARLIST.TXT
ftp://ftp.software.ibm.com/ps/products/db2/fixes/english-us/aparlist/db2_v95/APARLIST.TXT
ftp://ftp.software.ibm.com/ps/products/db2/fixes/english-us/aparlist/db2_v91/APARLIST.TXT
http://secunia.com/advisories/33529
Vendor Advisory
http://securitytracker.com/id?1021591
http://www-01.ibm.com/support/docview.wss?uid=swg21363936
Patch
Vendor Advisory
http://www.securityfocus.com/bid/33258
http://www.vupen.com/english/advisories/2009/0137
http://www-01.ibm.com/support/docview.wss?uid=swg1IZ39652
http://www-1.ibm.com/support/docview.wss?uid=swg1IZ39373
Patch
http://www-1.ibm.com/support/docview.wss?uid=swg1IZ39653
Patch
https://exchange.xforce.ibmcloud.com/vulnerabilities/47934