Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2009-1239

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2009-1239
Last Modified 18 Apr 2009 01:48:18
Published 03 Apr 2009 02:30:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2009-1239

Summary

IBM DB2 9.1 before FP7 returns incorrect query results in certain situations related to the order of application of an INNER JOIN predicate and an OUTER JOIN predicate, which might allow attackers to obtain sensitive information via a crafted query.

Vulnerable Systems

Application

  • Ibm Db2 9.1


References

CONFIRM - http://www-01.ibm.com/support/docview.wss?uid=swg21381257

AIXAPAR - JR31886

XF - db2-predicate-information-disclosure(49864)

VUPEN - ADV-2009-0912


Last Updated: 27 May 2016 10:50:30