IBM » Db2 Universal Database : Security Vulnerabilities, CVEs, Published In 2006
IBM DB2 8.1 before FixPak 14 allows remote attackers to cause a denial of service via a crafted SQLJRA packet, which causes a NULL pointer dereference in the sqle_db2ra_as_recvrequest function in DB2ENGN.DLL, a different issue than CVE-2006-4257.
Max CVSS
5.0
EPSS Score
0.27%
Published
2006-12-19
Updated
2008-09-05
IBM DB2 Universal Database (UDB) before 8.2 FixPak 12 allows remote attackers to cause a denial of service (application crash) by sending "incorrect information ... regarding the package name/creator," which leads to a "memory overwrite."
Max CVSS
5.0
EPSS Score
1.84%
Published
2006-06-19
Updated
2011-10-17
Multiple unspecified vulnerabilities in IBM DB2 Universal Database (UDB) before 8.1 FixPak 12 allow remote attackers to cause a denial of service (application crash) via a (1) "long column list" in the (a) REPLACE INTO and (b) INSERT INTO portions of the LOAD command or a (2) large number of values in an IN clause, possibly related to a buffer overflow.
Max CVSS
5.0
EPSS Score
6.61%
Published
2006-06-19
Updated
2017-07-20
Buffer overflow in the TCP/IP listener in IBM DB2 Universal Database (UDB) before 8.1 FixPak 12 allows remote attackers to cause a denial of service (application crash) via a long MGRLVLLS message inside of an EXCSAT message when establishing a connection.
Max CVSS
5.0
EPSS Score
2.95%
Published
2006-06-19
Updated
2018-10-18
4 vulnerabilities found