IBM DB2 Db2pd Denial Of Service Vulnerability (Linux) Network Vulnerability

Summary

The host is installed with IBM DB2 and is prone to Denial of Service vulnerability.

Impact

Successful exploitation will allow attacker to cause a denial of service (null pointer dereference and application crash). Impact Level: System/Application

Solution

Update IBM DB2 9.1 FP7, 9.5 FP5, http://www-01.ibm.com/support/docview.wss?rs=0&uid=swg24022678

Insight

The flaw is due to null pointer dereference error in db2pd within the problem determination component via unspecified vectors.

Affected

IBM DB2 version 9.1 prior to FP7 IBM DB2 version 9.5 prior to FP5

References

ftp://ftp.software.ibm.com/ps/products/db2/fixes/english-us/aparlist/db2_v91/APARLIST.TXT
ftp://ftp.software.ibm.com/ps/products/db2/fixes/english-us/aparlist/db2_v95/APARLIST.TXT

Updated on 2015-03-25

Severity

Classification

CVE CVE-2009-4332

CVSS	Base Score: 5.0 AV:N/AC:L/Au:N/C:N/I:N/A:P

Related Vulnerabilities

Oracle MySQL 'TEMPORARY InnoDB' Tables Denial Of Service Vulnerability
IBM DB2 Client Interfaces component Unspecified Vulnerabilities (Linux)
IBM DB2 REPEAT Buffer Overflow and TLS Renegotiation Vulnerabilities (Win)
Oracle MySQL Multiple Unspecified vulnerabilities - 02 Jan14 (Windows)
MySQL Unspecified vulnerabilities-05 July-2013 (Windows)

IBM DB2 db2pd Denial Of Service Vulnerability (Linux)

Take action and discover your vulnerabilities