Summary
The host is running IBM DB2 and is prone to denial of service vulnerability.
Impact
Successful exploitation allows remote users to cause denial of service.
Impact Level: Application
Solution
Upgrade to IBM DB2 version 9.7 FP6, 9.8 FP5 or later, For updates refer to http://www-01.ibm.com/support/docview.wss?uid=swg27007053
Insight
The flaw is caused due an error within chaining functionality in the Distributed Relational Database Architecture (DRDA) module, which can be exploited to cause a crash by sending a specially crafted DRDA request.
Affected
IBM DB2 version 9.7 before FP6
IBM DB2 version 9.8 before FP5
References
Severity
Classification
-
CVE CVE-2012-2180 -
CVSS Base Score: 4.3
AV:N/AC:M/Au:N/C:N/I:N/A:P
Related Vulnerabilities
- IBM DB2 SYSIBMADM Multiple Vulnerabilities (Sep10)
- Oracle MySQL Multiple Unspecified vulnerabilities - 01 Jan14 (Windows)
- IBM DB2 Self Tuning Memory Manager (STMM) DOS Vulnerability (Linux)
- Oracle MySQL Server Multiple Vulnerabilities-03 Nov12 (Windows)
- MySQL UNINSTALL PLUGIN Security Bypass Vulnerability