PT-2013-4802 · Ibm · Ibm Db2 Advanced Enterprise Server Edition+1

Published

2013-10-02

·

Updated

2017-08-29

·

CVE-2013-4032

CVSS v2.0

5.0

Medium

VectorAV:N/AC:L/Au:N/C:N/I:N/A:P
Name of the Vulnerable Software and Affected Versions IBM DB2 Enterprise Server Edition versions 10.1 before FP3 and 10.5 IBM DB2 Advanced Enterprise Server Edition versions 10.1 before FP3 and 10.5
Description The issue allows remote attackers to cause a denial of service via vectors involving arbitrary data when a multi-node configuration is used in the Fast Communications Manager (FCM) component.
Recommendations For IBM DB2 Enterprise Server Edition versions 10.1 before FP3, update to FP3 or a later version. For IBM DB2 Enterprise Server Edition version 10.5, apply the fix provided by IBM. For IBM DB2 Advanced Enterprise Server Edition versions 10.1 before FP3, update to FP3 or a later version. For IBM DB2 Advanced Enterprise Server Edition version 10.5, apply the fix provided by IBM.

Fix

DoS

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-20

Related Identifiers

CVE-2013-4032

Affected Products

Ibm Db2 Advanced Enterprise Server Edition
Ibm Db2 Enterprise Server Edition