CVE-2010-3734
Published Oct 5, 2010
Last updated 7 years ago
Overview
- Description
- The Install component in IBM DB2 UDB 9.5 before FP6a on Linux, UNIX, and Windows enforces an unintended limit on password length, which makes it easier for attackers to obtain access via a brute-force attack.
- Source
- cve@mitre.org
- NVD status
- Modified
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 5
- Impact score
- 2.9
- Exploitability score
- 10
- Vector string
- AV:N/AC:L/Au:N/C:N/I:P/A:N
Weaknesses
- nvd@nist.gov
- CWE-264
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:ibm:db2:9.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "11ABF7CC-2FA5-4F2D-901A-2D0EF5B8E717"
},
{
"criteria": "cpe:2.3:a:ibm:db2:9.5:fp1:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "58147402-53D5-4F15-862B-EE3DCCD75E2C"
},
{
"criteria": "cpe:2.3:a:ibm:db2:9.5:fp2:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D3F3CB5E-D4FB-4C03-B108-06CC358B1F45"
},
{
"criteria": "cpe:2.3:a:ibm:db2:9.5:fp2a:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "CB2EA14A-878A-4D8D-B17A-568712D21C48"
},
{
"criteria": "cpe:2.3:a:ibm:db2:9.5:fp3:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "84C925CD-E753-401F-9EC0-6E3D9861C818"
},
{
"criteria": "cpe:2.3:a:ibm:db2:9.5:fp3a:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "651D042C-A9F1-42D1-A6DD-95ADBCD08448"
},
{
"criteria": "cpe:2.3:a:ibm:db2:9.5:fp3b:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0A589323-B8B8-4CB4-B1A9-B9E771C99123"
},
{
"criteria": "cpe:2.3:a:ibm:db2:9.5:fp4:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "61252AF9-A231-442A-A473-BA0608323BF2"
},
{
"criteria": "cpe:2.3:a:ibm:db2:9.5:fp4a:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "EB37A1AA-58F0-4A39-8E38-C70692CE67BF"
},
{
"criteria": "cpe:2.3:a:ibm:db2:9.5:fp5:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1D9D5B5B-8E23-4987-9BBE-8FE1F27CB1B5"
}
],
"operator": "OR"
}
]
}
]