PT-2016-4095 · Ibm · Ibm Db2
Published
2016-04-28
·
Updated
2016-12-03
·
CVE-2016-0211
CVSS v3.1
4.3
Medium
| Vector | AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L |
Name of the Vulnerable Software and Affected Versions
IBM DB2 versions 9.7 through 9.7 FP11
IBM DB2 version 9.8
IBM DB2 versions 10.1 through 10.1 FP5
IBM DB2 versions 10.5 through 10.5 FP7
Description
The issue allows remote authenticated users to cause a denial of service, resulting in a daemon crash, by sending a crafted DRDA message.
Recommendations
For IBM DB2 version 9.8, update to a version that includes a fix for this issue.
For IBM DB2 versions 9.7 through 9.7 FP11, update to a version that includes a fix for this issue.
For IBM DB2 versions 10.1 through 10.1 FP5, update to a version that includes a fix for this issue.
For IBM DB2 versions 10.5 through 10.5 FP7, update to a version that includes a fix for this issue.
Fix
DoS
RCE
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Ibm Db2