- Description
- IBM DB2 9.7 through FP10, 9.8 through FP5, 10.1 through FP4, and 10.5 before FP5 on Linux, UNIX, and Windows allows remote authenticated users to cause a denial of service (daemon crash) by specifying the same column within multiple ALTER TABLE statements.
- Source
- psirt@us.ibm.com
- NVD status
- Deferred
CVSS 2.0
- Type
- Primary
- Base score
- 4
- Impact score
- 2.9
- Exploitability score
- 8
- Vector string
- AV:N/AC:L/Au:S/C:N/I:N/A:P
- nvd@nist.gov
- CWE-20
- Hype score
- Not currently trending
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:ibm:db2:9.7:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "CE1C4DE6-EB32-4A31-9FAA-D8DA31D8CF05"
},
{
"criteria": "cpe:2.3:a:ibm:db2:9.8:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D72D43DB-9A92-4E12-853B-F5FC9421D5EA"
},
{
"criteria": "cpe:2.3:a:ibm:db2_connect:10.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B343CCB4-CE4B-44D2-A04E-69031CD649EA"
},
{
"criteria": "cpe:2.3:a:ibm:db2_connect:10.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1EC398F4-AA9B-446B-ABE3-236A3F72FBB9"
}
],
"operator": "OR"
}
]
}
]