PT-2008-1439 · Ibm · Ibm Db2 Universal Database (Udb) Administration Server

Publicado

2008-02-12

Atualizado

2008-09-05

CVE-2007-3676

CVSS v2.0

Alta

Vetor

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions IBM DB2 Universal Database (UDB) Administration Server (DAS) versions 8 before Fix Pack 16 IBM DB2 Universal Database (UDB) Administration Server (DAS) versions 9 before Fix Pack 4

Description The issue allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via modified pointer values in unspecified remote administration requests. This triggers memory corruption or other invalid memory access.

Recommendations For IBM DB2 Universal Database (UDB) Administration Server (DAS) versions 8 before Fix Pack 16, apply Fix Pack 16 to resolve the issue. For IBM DB2 Universal Database (UDB) Administration Server (DAS) versions 9 before Fix Pack 4, apply Fix Pack 4 to resolve the issue.

Correção

DoS

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-399

Identificadores relacionados

CVE-2007-3676

Produtos afetados

Ibm Db2 Universal Database (Udb) Administration Server

PT-2008-1439 · Ibm · Ibm Db2 Universal Database (Udb) Administration Server

CVE-2007-3676

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 3