Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-3858

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2008-3858
Last Modified 15 Nov 2008 02:18:56
Published 28 Aug 2008 01:41:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2008-3858

Summary

The Downlevel DB2RA Support component in IBM DB2 9.1 before Fixpak 4a allows remote attackers to cause a denial of service (instance crash) via a crafted CONNECT data stream that simulates a V7 client connect request.

Vulnerable Systems

Application

  • Ibm Db2 Universal Database 9.1


References

BID - 29601

CONFIRM - http://www-1.ibm.com/support/docview.wss?uid=swg21255607

AIXAPAR - IZ07299

XF - ibm-db2-downlevel-db2rasupport-dos(45138)

OSVDB - 48428


Last Updated: 27 May 2016 10:48:19