CVE-2014-3095

Published Sep 4, 2014
Last updated 3 months ago
CVSS info 3.5
Overview

Description: The SQL engine in IBM DB2 9.5 through FP10, 9.7 through FP9a, 9.8 through FP5, 10.1 through FP4, and 10.5 before FP4 on Linux, UNIX, and Windows allows remote authenticated users to cause a denial of service (daemon crash) via a crafted UNION clause in a subquery of a SELECT statement.
Source: psirt@us.ibm.com
NVD status: Modified
Risk scores

CVSS 2.0

Type: Primary
Base score: 3.5
Impact score: 2.9
Exploitability score: 6.8
Vector string: AV:N/AC:M/Au:S/C:N/I:N/A:P
Weaknesses

nvd@nist.gov: CWE-20
Hype score: Not currently trending
Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:ibm:db2:9.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "11ABF7CC-2FA5-4F2D-901A-2D0EF5B8E717"
          },
          {
            "criteria": "cpe:2.3:a:ibm:db2:9.5.0.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "95D26FF3-1D40-49D6-A5BB-284FE1B89288"
          },
          {
            "criteria": "cpe:2.3:a:ibm:db2:9.5.0.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C7A2E9C9-8EB4-4127-8278-E976D4D3B7C2"
          },
          {
            "criteria": "cpe:2.3:a:ibm:db2:9.5.0.2:a:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DC1ED577-3F11-415F-90C8-62B9EC21CA08"
          },
          {
            "criteria": "cpe:2.3:a:ibm:db2:9.5.0.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9E054B24-704E-4C05-8E58-3FE0A04D84EC"
          },
          {
            "criteria": "cpe:2.3:a:ibm:db2:9.5.0.3:a:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4C72E084-0266-4389-B8BB-202292D47DB4"
          },
          {
            "criteria": "cpe:2.3:a:ibm:db2:9.5.0.3:b:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "008B98FD-1DE2-4323-B20E-7BD422EB6771"
          },
          {
            "criteria": "cpe:2.3:a:ibm:db2:9.5.0.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E12C4D6E-7AF9-44F9-9389-F9CA7409C41F"
          },
          {
            "criteria": "cpe:2.3:a:ibm:db2:9.5.0.4:a:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8A1C889C-885B-4DB3-A5F4-89A0B1DE0F47"
          },
          {
            "criteria": "cpe:2.3:a:ibm:db2:9.5.0.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C13BB7FD-718B-499E-87C7-637D2A2E3D5E"
          },
          {
            "criteria": "cpe:2.3:a:ibm:db2:9.5.0.6:a:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "267FE109-013A-482E-8078-161FA0991973"
          },
          {
            "criteria": "cpe:2.3:a:ibm:db2:9.5.0.7:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C2F30C1B-0799-49A2-BAA5-26A6030B7682"
          },
          {
            "criteria": "cpe:2.3:a:ibm:db2:9.5.0.8:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8C4E4D16-3C35-42BD-A131-AF0DFC2D20AB"
          },
          {
            "criteria": "cpe:2.3:a:ibm:db2:9.5.0.9:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9B7D92A9-BC9A-4F56-AEA6-CE06C7688070"
          },
          {
            "criteria": "cpe:2.3:a:ibm:db2:9.5.0.10:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E3356137-34FF-4B43-861B-E3DBA6594E72"
          },
          {
            "criteria": "cpe:2.3:a:ibm:db2:9.7:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CE1C4DE6-EB32-4A31-9FAA-D8DA31D8CF05"
          },
          {
            "criteria": "cpe:2.3:a:ibm:db2:9.7.0.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A8A8E221-7045-4BAD-9B29-ABBC5216559D"
          },
          {
            "criteria": "cpe:2.3:a:ibm:db2:9.7.0.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "56C39DC1-AD23-4F26-9727-EC0FBDF84BEE"
          },
          {
            "criteria": "cpe:2.3:a:ibm:db2:9.7.0.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2513D42C-E558-4CC7-88D3-BB44F1B40157"
          },
          {
            "criteria": "cpe:2.3:a:ibm:db2:9.7.0.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6F441BE8-AEC0-44F0-875E-03C65A45CF68"
          },
          {
            "criteria": "cpe:2.3:a:ibm:db2:9.7.0.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "036E9715-CFAA-4F2A-B432-181EDCA3D812"
          },
          {
            "criteria": "cpe:2.3:a:ibm:db2:9.7.0.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9A55FBA0-4DFC-493D-91EF-EB56C241F9CE"
          },
          {
            "criteria": "cpe:2.3:a:ibm:db2:9.7.0.7:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B539123F-B8AC-4051-9458-A780C68E9667"
          },
          {
            "criteria": "cpe:2.3:a:ibm:db2:9.7.0.8:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D3958E50-1F97-4C06-AF22-C635FB2557A0"
          },
          {
            "criteria": "cpe:2.3:a:ibm:db2:9.7.0.9:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "57AC4D14-805A-42F6-9348-D13C9A48136F"
          },
          {
            "criteria": "cpe:2.3:a:ibm:db2:9.7.0.9:a:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2B1F07F2-3F58-4999-97E9-50C627D9CB84"
          },
          {
            "criteria": "cpe:2.3:a:ibm:db2:9.8:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D72D43DB-9A92-4E12-853B-F5FC9421D5EA"
          },
          {
            "criteria": "cpe:2.3:a:ibm:db2:9.8.0.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "734E79E6-4A83-4CBF-B8B3-2D6D4491728E"
          },
          {
            "criteria": "cpe:2.3:a:ibm:db2:9.8.0.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3631F758-5C8F-4D24-81C1-D6146B0209CB"
          },
          {
            "criteria": "cpe:2.3:a:ibm:db2:9.8.0.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3CB6E617-98EA-4944-9211-FFEE9E50FE55"
          },
          {
            "criteria": "cpe:2.3:a:ibm:db2:10.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2952EB24-A015-4EC7-85E3-88588D0AB15B"
          },
          {
            "criteria": "cpe:2.3:a:ibm:db2:10.1.0.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E5FA4086-9B5D-4352-B717-3F826DE17D4B"
          },
          {
            "criteria": "cpe:2.3:a:ibm:db2:10.1.0.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AD79FF24-6C10-437B-86AF-E211B8C6FDC5"
          },
          {
            "criteria": "cpe:2.3:a:ibm:db2:10.1.0.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7ABB145C-44EE-47F5-9439-DE6433F8008E"
          },
          {
            "criteria": "cpe:2.3:a:ibm:db2:10.1.0.3:a:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5815103C-D6DC-49D2-A544-1E3A2AEEEB3D"
          },
          {
            "criteria": "cpe:2.3:a:ibm:db2:10.1.0.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0F138E08-6808-4371-9E9C-096B01126B1C"
          },
          {
            "criteria": "cpe:2.3:a:ibm:db2:10.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6E232F83-BE4C-4B3E-A5B1-53F9D95F0368"
          },
          {
            "criteria": "cpe:2.3:a:ibm:db2:10.5.0.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4B27E1F7-888C-40EE-85FF-B5DC099828C3"
          },
          {
            "criteria": "cpe:2.3:a:ibm:db2:10.5.0.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "57DCF076-B475-41E6-B1ED-44FBC99238C2"
          },
          {
            "criteria": "cpe:2.3:a:ibm:db2:10.5.0.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BDB1972D-F7FC-4ABA-9DEE-9953D2572944"
          },
          {
            "criteria": "cpe:2.3:a:ibm:db2:10.5.0.3:a:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CA651B7E-418B-4C3C-9A83-7E25342D884F"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "155AD4FB-E527-4103-BCEF-801B653DEA37"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "2CF61F35-5905-4BA9-AD7E-7DB261D2F256"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  }
]
Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References
