IBM DB2 Universal Database 9.1 GA

CPE Details

IBM DB2 Universal Database 9.1 GA
ibm
db2_universal_database
9.1
2007-08-23
19h16 +00:00
2008-04-07
12h13 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:ibm:db2_universal_database:9.1:ga:*:*:*:*:*:*

Informations

Vendor

ibm

Product

db2_universal_database

Version

9.1

Update

ga

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2009-0172 2009-01-16 20h00 +00:00 Unspecified vulnerability in IBM DB2 8 before FP17a, 9.1 before FP6a, and 9.5 before FP3a allows remote attackers to cause a denial of service (infinite loop) via a crafted CONNECT data stream.
5
CVE-2009-0173 2009-01-16 20h00 +00:00 Unspecified vulnerability in the server in IBM DB2 8 before FP17a, 9.1 before FP6a, and 9.5 before FP3a allows remote authenticated users to cause a denial of service (trap) via a crafted data stream.
5
CVE-2007-5664 2008-04-16 16h00 +00:00 db2dasrrm in the DB2 Administration Server (DAS) in IBM DB2 Universal Database 9.5 before Fix Pack 1, 9.1 before Fix Pack 4a, and 8 before FixPak 16 allows local users to overwrite arbitrary files via a symlink attack on files used for initialization.
6.9
CVE-2007-5758 2008-04-16 16h00 +00:00 Stack-based buffer overflow in db2dasrrm in the DB2 Administration Server (DAS) in IBM DB2 Universal Database 9.5 before Fix Pack 1, 9.1 before Fix Pack 4a, and 8 before FixPak 16 allows local users to execute arbitrary code via a long DASPROF environment variable.
6.9
CVE-2007-1089 2007-02-23 21h00 +00:00 IBM DB2 Universal Database (UDB) 9.1 GA through 9.1 FP1 allows local users with table SELECT privileges to perform unauthorized UPDATE and DELETE SQL commands via unknown vectors.
7.2
The information presented on CVE Find originates from several carefully selected reference sources. CVE data is provided by MITRE Corporation and the National Vulnerability Database (NVD). The Known Exploited Vulnerabilities (KEV) catalog is sourced from the Cybersecurity and Infrastructure Security Agency (CISA), while EPSS scores come from FIRST.org. Additionally, data regarding software weaknesses (CWE) and common attack patterns (CAPEC) is maintained by MITRE Corporation, and information on hardware and software configurations (CPE) is provided by the NVD.