PT-2014-8752 · Ibm · Ibm Db2
Publicado
2014-12-18
·
Atualizado
2018-09-28
·
CVE-2014-8901
CVSS v2.0
4.0
Média
| Vetor | AV:N/AC:L/Au:S/C:N/I:N/A:P |
Name of the Vulnerable Software and Affected Versions
IBM DB2 versions 9.5 through FP10
IBM DB2 versions 9.7 through FP10
IBM DB2 versions 9.8 through FP5
IBM DB2 versions 10.1 through FP4
IBM DB2 versions 10.5 before FP5
Description
The issue allows remote authenticated users to cause a denial of service, specifically CPU consumption, by submitting a crafted XML query.
Recommendations
For IBM DB2 versions 9.5 through FP10, update to a version after FP10 to resolve the issue.
For IBM DB2 versions 9.7 through FP10, update to a version after FP10 to resolve the issue.
For IBM DB2 versions 9.8 through FP5, update to a version after FP5 to resolve the issue.
For IBM DB2 versions 10.1 through FP4, update to a version after FP4 to resolve the issue.
For IBM DB2 versions 10.5 before FP5, update to FP5 or later to resolve the issue.
Correção
DoS
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Ibm Db2