CVE-2009-0173

IBM DB2 Universal Database - Denial of Service via Crafted Data Stream

Title source: llm
STIX 2.1

Description

Unspecified vulnerability in the server in IBM DB2 8 before FP17a, 9.1 before FP6a, and 9.5 before FP3a allows remote authenticated users to cause a denial of service (trap) via a crafted data stream.

References (12)

Core 12
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://securitytracker.com/id?1021591
Various Sources vendor-advisory x_refsource_aixapar
http://www-01.ibm.com/support/docview.wss?uid=swg1IZ39652
Patch vendor-advisory x_refsource_aixapar
http://www-1.ibm.com/support/docview.wss?uid=swg1IZ39373
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/47934
Patch vendor-advisory x_refsource_aixapar
http://www-1.ibm.com/support/docview.wss?uid=swg1IZ39653
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/33529
Patch, Vendor Advisory x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg21363936
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2009/0137
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/33258

Scores

EPSS 0.0301
EPSS Percentile 85.9%

Details

CWE
CWE-20
Status published
Products (2)
ibm/db2_universal_database 9.1 (24 CPE variants)
ibm/db2_universal_database 9.5 (11 CPE variants)
Published Jan 16, 2009
Tracked Since Feb 18, 2026