- Description
- Multiple unspecified vulnerabilities in IBM DB2 Universal Database (UDB) before 8.1 FixPak 12 allow remote attackers to cause a denial of service (application crash) via a (1) "long column list" in the (a) REPLACE INTO and (b) INSERT INTO portions of the LOAD command or a (2) large number of values in an IN clause, possibly related to a buffer overflow.
- Source
- cve@mitre.org
- NVD status
- Modified
CVSS 2.0
- Type
- Primary
- Base score
- 5
- Impact score
- 2.9
- Exploitability score
- 10
- Vector string
- AV:N/AC:L/Au:N/C:N/I:N/A:P
- Hype score
- Not currently trending
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:ibm:db2_universal_database:*:*:fp11:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0BA96128-8431-4A06-944E-5DE3B35F6DB8",
"versionEndIncluding": "8.1"
},
{
"criteria": "cpe:2.3:a:ibm:db2_universal_database:8.0:fp9:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "047ACB09-E3E2-426D-8C9E-D3EF1955FC1F"
},
{
"criteria": "cpe:2.3:a:ibm:db2_universal_database:8.1:*:fp10:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F26F3B4E-088A-462B-8185-06B4F688B69F"
},
{
"criteria": "cpe:2.3:a:ibm:db2_universal_database:8.1:*:fp8:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "86B9DD77-324F-40AC-9107-793DDD86C974"
}
],
"operator": "OR"
}
]
}
]