Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm db2 universal database vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2008-3960
Unspecified vulnerability in the JDBC Applet Server Service (aka db2jds) in IBM DB2 UDB 8 before Fixpak 17 allows remote malicious users to cause a denial of service (service crash) via "malicious packets."
Ibm Db2 Universal Database 8.2
Ibm Db2 Universal Database
5
CVSSv2
CVE-2007-4423
Stack-based buffer overflow in the AUTH_LIST_GROUPS_FOR_AUTHID function in IBM DB2 UDB 9.1 before Fixpak 3 allows malicious users to cause a denial of service and possibly execute arbitrary code via a long argument.
Ibm Db2 Universal Database 8.0
Ibm Db2 Universal Database 9.0
Ibm Db2 Universal Database 9.1
5
CVSSv2
CVE-2006-6638
IBM DB2 8.1 before FixPak 14 allows remote malicious users to cause a denial of service via a crafted SQLJRA packet, which causes a NULL pointer dereference in the sqle_db2ra_as_recvrequest function in DB2ENGN.DLL, a different issue than CVE-2006-4257.
Ibm Db2 Universal Database 8.10
Ibm Db2 Universal Database 8.12
Ibm Db2 Universal Database 8.1.6
Ibm Db2 Universal Database 8.1.6c
Ibm Db2 Universal Database 8.1.7
Ibm Db2 Universal Database 8.1.7b
Ibm Db2 Universal Database 8.1.8
Ibm Db2 Universal Database 8.1.5
Ibm Db2 Universal Database 8.1.9
Ibm Db2 Universal Database 8.1
Ibm Db2 Universal Database 8.1.4
Ibm Db2 Universal Database 8.1.8a
Ibm Db2 Universal Database 8.1.9a
5
CVSSv2
CVE-2006-3068
IBM DB2 Universal Database (UDB) prior to 8.2 FixPak 12 allows remote malicious users to cause a denial of service (application crash) by sending "incorrect information ... regarding the package name/creator," which leads to a "memory overwrite."
Ibm Db2 Universal Database 8.1
5
CVSSv2
CVE-2006-3066
Buffer overflow in the TCP/IP listener in IBM DB2 Universal Database (UDB) prior to 8.1 FixPak 12 allows remote malicious users to cause a denial of service (application crash) via a long MGRLVLLS message inside of an EXCSAT message when establishing a connection.
Ibm Db2 Universal Database 8.1.6
Ibm Db2 Universal Database 8.1.6c
Ibm Db2 Universal Database 8.1
Ibm Db2 Universal Database
Ibm Db2 Universal Database 8.1.4
Ibm Db2 Universal Database 8.1.5
Ibm Db2 Universal Database 8.1.9
Ibm Db2 Universal Database 8.1.9a
Ibm Db2 Universal Database 8.1.7
Ibm Db2 Universal Database 8.1.7b
Ibm Db2 Universal Database 8.0
Ibm Db2 Universal Database 8.1.8
Ibm Db2 Universal Database 8.1.8a
5
CVSSv2
CVE-2006-3067
Multiple unspecified vulnerabilities in IBM DB2 Universal Database (UDB) prior to 8.1 FixPak 12 allow remote malicious users to cause a denial of service (application crash) via a (1) "long column list" in the (a) REPLACE INTO and (b) INSERT INTO portions of the LOAD co...
Ibm Db2 Universal Database 8.0
Ibm Db2 Universal Database 8.1
Ibm Db2 Universal Database
5
CVSSv2
CVE-2003-0827
The DB2 Discovery Service for IBM DB2 before FixPak 10a allows remote malicious users to cause a denial of service (crash) via a long packet to UDP port 523.
Ibm Db2 Universal Database 7.1
Ibm Db2 Universal Database 7.2
5
CVSSv2
CVE-2001-1143
IBM DB2 7.0 allows a remote malicious user to cause a denial of service (crash) via a single byte to (1) db2ccs.exe on port 6790, or (2) db2jds.exe on port 6789.
Ibm Db2 Universal Database 7.0
4.6
CVSSv2
CVE-2009-4150
dasauto in IBM DB2 8 before FP18, 9.1 before FP8, 9.5 before FP4, and 9.7 before FP1 permits execution by unprivileged user accounts, which has unspecified impact and local attack vectors.
Ibm Db2 Universal Database 8
Ibm Db2 9.1
Ibm Db2 9.5
Ibm Db2 9.7
4.6
CVSSv2
CVE-2008-3857
The Base Service Utilities component in IBM DB2 9.1 before Fixpak 5 retains a cleartext password in memory after the database connection that sent the password is fully established, which might allow local users to obtain sensitive information by reading a memory dump.
Ibm Db2 Universal Database 9.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-30310
CVE-2024-21683
CVE-2024-22187
chrome
deserialization
XPath injection
CVE-2024-27842
denial of service
CVE-2024-24851
google
CVE-2024-35400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »