Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm db2 9.5 vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2008-6821
Buffer overflow in the DAS server in IBM DB2 8 before FP17, 9.1 before FP5, and 9.5 before FP2 might allow malicious users to execute arbitrary code or cause a denial of service (application crash) via unspecified vectors, a different vulnerability than CVE-2007-3676 and CVE-2008...
Ibm Db2 8.0
Ibm Db2 9.1
Ibm Db2 9.5
10
CVSSv2
CVE-2008-6820
The db2fmp process in IBM DB2 8 before FP17, 9.1 before FP5, and 9.5 before FP2 on Windows runs with "OS privilege," which has unknown impact and attack vectors, a different vulnerability than CVE-2008-3856.
Ibm Db2 8.0
Ibm Db2 9.1
Ibm Db2 9.5
5
CVSSv2
CVE-2009-4332
db2pd in the Problem Determination component in IBM DB2 9.1 before FP7 and 9.5 before FP5 allows malicious users to cause a denial of service (NULL pointer dereference and application termination) via unspecified vectors.
Ibm Db2 9.5
Ibm Db2 9.1
Ibm Db2 9.7
4.6
CVSSv2
CVE-2009-4334
The Self Tuning Memory Manager (STMM) component in IBM DB2 9.1 before FP8, 9.5 before FP5, and 9.7 before FP1 uses 0666 permissions for the STMM log file, which allows local users to cause a denial of service or have unspecified other impact by writing to this file.
Ibm Db2 9.5
Ibm Db2 9.7
Ibm Db2 9.1
6.5
CVSSv2
CVE-2009-4438
The Query Compiler, Rewrite, and Optimizer component in IBM DB2 9.1 before FP8, 9.5 before FP5, and 9.7 before FP1 does not enforce privilege requirements for access to a (1) sequence or (2) global-variable object, which allows remote authenticated users to make use of data via u...
Ibm Db2 9.1
Ibm Db2 9.5
Ibm Db2 9.7
7.5
CVSSv2
CVE-2009-3471
IBM DB2 8 before FP18, 9.1 before FP8, 9.5 before FP4, and 9.7 before FP2 does not perform the expected drops of certain table functions upon a loss of privileges by the functions' definers, which has unspecified impact and remote attack vectors.
Ibm Db2 8.0
Ibm Db2 9.1
Ibm Db2 9.5
4
CVSSv2
CVE-2012-0709
IBM DB2 9.5 before FP9, 9.7 through FP5, and 9.8 through FP4 does not properly check variables, which allows remote authenticated users to bypass intended restrictions on viewing table data by leveraging the CREATEIN privilege to execute crafted SQL CREATE VARIABLE statements.
Ibm Db2 9.5
Ibm Db2 9.7
Ibm Db2 9.8
7.5
CVSSv2
CVE-2012-0711
Integer signedness error in the db2dasrrm process in the DB2 Administration Server (DAS) in IBM DB2 9.1 through FP11, 9.5 before FP9, and 9.7 through FP5 on UNIX platforms allows remote malicious users to execute arbitrary code via a crafted request that triggers a heap-based buf...
Ibm Db2 9.1
Ibm Db2 9.5
Ibm Db2 9.7
4
CVSSv2
CVE-2012-0712
The XML feature in IBM DB2 9.5 before FP9, 9.7 through FP5, and 9.8 through FP4 allows remote authenticated users to cause a denial of service (infinite loop) by calling the XMLPARSE function with a crafted string expression.
Ibm Db2 9.5
Ibm Db2 9.7
Ibm Db2 9.8
4
CVSSv2
CVE-2008-1966
Multiple buffer overflows in the JAR file administration routines in the BSU JAVA subcomponent in IBM DB2 8 before FP16, 9.1 before FP4a, and 9.5 before FP1 allow remote authenticated users to cause a denial of service (instance crash) via a call to the (1) RECOVERJAR or (2) REMO...
Ibm Db2 8.0
Ibm Db2 9.5
Ibm Db2 9.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
hard-coded
CVE-2024-27202
NULL pointer dereference
CVE-2024-28075
CVE-2024-33608
CVE-2024-28889
CVE-2024-34572
template injection
CVE-2024-34351
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »