Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2014-8901

Overview

Vulnerability Score 4.0 4.0
CVE Id CVE-2014-8901
Last Modified 18 Dec 2014 02:15:12
Published 18 Dec 2014 11:59:18
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication SINGLE_INSTANCE

CVE-2014-8901

Summary

IBM DB2 9.5 through FP10, 9.7 through FP10, 9.8 through FP5, 10.1 through FP4, and 10.5 before FP5 allows remote authenticated users to cause a denial of service (CPU consumption) via a crafted XML query.

Vulnerable Systems

Application

  • Ibm Db2 10.1

  • Ibm Db2 10.5

  • Ibm Db2 9.5

  • Ibm Db2 9.7

  • Ibm Db2 9.8


References

XF - ibm-xml-cve20148901-dos(99110)

CONFIRM - http://www-01.ibm.com/support/docview.wss?uid=swg21692358

AIXAPAR - IT05939

AIXAPAR - IT05938

AIXAPAR - IT05937

AIXAPAR - IT05936

AIXAPAR - IT05933


Last Updated: 27 May 2016 11:07:20