CVE-2014-6159

IBM DB2 9.7-10.5 - Authenticated Denial of Service via ALTER TABLE Statement

Title source: llm
STIX 2.1

Description

IBM DB2 9.7 before FP10, 9.8 through FP5, 10.1 through FT4, and 10.5 through FP4 on Linux, UNIX, and Windows, when immediate AUTO_REVAL is enabled, allows remote authenticated users to cause a denial of service (daemon crash) via a crafted ALTER TABLE statement.

References (10)

Core 10
Core References
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/62092
Various Sources vendor-advisory x_refsource_aixapar
http://www-01.ibm.com/support/docview.wss?uid=swg1IT05074
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/71006
Various Sources vendor-advisory x_refsource_aixapar
http://www-01.ibm.com/support/docview.wss?uid=swg1IT04730
Various Sources vendor-advisory x_refsource_aixapar
http://www-01.ibm.com/support/docview.wss?uid=swg1IT05132
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/97708
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/62093
Various Sources x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg21693197
Vendor Advisory x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg21688051
Vendor Advisory vendor-advisory x_refsource_aixapar
http://www-01.ibm.com/support/docview.wss?uid=swg1IT05105

Scores

EPSS 0.0212
EPSS Percentile 79.7%

Details

CWE
CWE-20
Status published
Products (4)
ibm/db2 9.7
ibm/db2 9.8
ibm/db2 10.1
ibm/db2 10.5
Published Nov 08, 2014
Tracked Since Feb 18, 2026