Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
4
CVSSv2

CVE-2008-1966

Published: 27/04/2008 Updated: 11/10/2018
CVSS v2 Base Score: 4 | Impact Score: 2.9 | Exploitability Score: 8
VMScore: 356
Vector: AV:N/AC:L/Au:S/C:N/I:N/A:P
Subscribe to Ibm

Vulnerability Summary

Multiple buffer overflows in the JAR file administration routines in the BSU JAVA subcomponent in IBM DB2 8 before FP16, 9.1 before FP4a, and 9.5 before FP1 allow remote authenticated users to cause a denial of service (instance crash) via a call to the (1) RECOVERJAR or (2) REMOVE_JAR procedure with a crafted parameter, related to (a) sqlj.install_jar and (b) sqlj.replace_jar.

Vulnerable Product Search on Vulmon Subscribe to Product

ibm db2 8.0

ibm db2 9.5

ibm db2 9.1

References

CWE-119http://www-1.ibm.com/support/docview.wss?uid=swg1IZ08512http://www-1.ibm.com/support/docview.wss?uid=swg1IZ08945http://www-1.ibm.com/support/docview.wss?uid=swg1IZ15496http://www.securityfocus.com/bid/28835http://www.securityfocus.com/bid/29601http://www-1.ibm.com/support/docview.wss?uid=swg21255607http://secunia.com/advisories/29022http://www.appsecinc.com/resources/alerts/db2/2008-04.shtmlhttp://osvdb.org/46269http://osvdb.org/46268https://exchange.xforce.ibmcloud.com/vulnerabilities/41955http://www.securityfocus.com/archive/1/491071/100/0/threadedhttps://nvd.nist.gov
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereferenceCVE-2023-52689CVE-2024-23803client sideCVE-2023-52696information disclosureCVE-2024-35843CVE-2024-27130CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook