CVE-2009-0172
Severity CVSS v4.0:
Pending analysis
Type:
CWE-20
Input Validation
Publication date:
16/01/2009
Last modified:
09/04/2025
Description
Unspecified vulnerability in IBM DB2 8 before FP17a, 9.1 before FP6a, and 9.5 before FP3a allows remote attackers to cause a denial of service (infinite loop) via a crafted CONNECT data stream.
Impact
Base Score 2.0
5.00
Severity 2.0
MEDIUM
Vulnerable products and versions
CPE | From | Up to |
---|---|---|
cpe:2.3:a:ibm:db2_universal_database:9.1:*:aix:*:*:*:*:* | ||
cpe:2.3:a:ibm:db2_universal_database:9.1:*:hp-ux:*:*:*:*:* | ||
cpe:2.3:a:ibm:db2_universal_database:9.1:*:linux:*:*:*:*:* | ||
cpe:2.3:a:ibm:db2_universal_database:9.1:*:solaris:*:*:*:*:* | ||
cpe:2.3:a:ibm:db2_universal_database:9.1:*:windows:*:*:*:*:* | ||
cpe:2.3:a:ibm:db2_universal_database:9.1:fp2:*:*:*:*:*:* | ||
cpe:2.3:a:ibm:db2_universal_database:9.1:fp2:aix:*:*:*:*:* | ||
cpe:2.3:a:ibm:db2_universal_database:9.1:fp2:hp-ux:*:*:*:*:* | ||
cpe:2.3:a:ibm:db2_universal_database:9.1:fp2:linux:*:*:*:*:* | ||
cpe:2.3:a:ibm:db2_universal_database:9.1:fp2:solaris:*:*:*:*:* | ||
cpe:2.3:a:ibm:db2_universal_database:9.1:fp2:windows:*:*:*:*:* | ||
cpe:2.3:a:ibm:db2_universal_database:9.1:fp3:aix:*:*:*:*:* | ||
cpe:2.3:a:ibm:db2_universal_database:9.1:fp3:hp-ux:*:*:*:*:* | ||
cpe:2.3:a:ibm:db2_universal_database:9.1:fp3:solaris:*:*:*:*:* | ||
cpe:2.3:a:ibm:db2_universal_database:9.1:fp4:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- ftp://ftp.software.ibm.com/ps/products/db2/fixes/english-us/aparlist/db2_v82/APARLIST.TXT
- ftp://ftp.software.ibm.com/ps/products/db2/fixes/english-us/aparlist/db2_v91/APARLIST.TXT
- ftp://ftp.software.ibm.com/ps/products/db2/fixes/english-us/aparlist/db2_v95/APARLIST.TXT
- http://secunia.com/advisories/33529
- http://securitytracker.com/id?1021591=
- http://www-01.ibm.com/support/docview.wss?uid=swg1IZ37696
- http://www-01.ibm.com/support/docview.wss?uid=swg21363936
- http://www-1.ibm.com/support/docview.wss?uid=swg1IZ36534
- http://www-1.ibm.com/support/docview.wss?uid=swg1IZ37697
- http://www.securityfocus.com/bid/33258
- http://www.vupen.com/english/advisories/2009/0137
- https://exchange.xforce.ibmcloud.com/vulnerabilities/47931
- ftp://ftp.software.ibm.com/ps/products/db2/fixes/english-us/aparlist/db2_v82/APARLIST.TXT
- ftp://ftp.software.ibm.com/ps/products/db2/fixes/english-us/aparlist/db2_v91/APARLIST.TXT
- ftp://ftp.software.ibm.com/ps/products/db2/fixes/english-us/aparlist/db2_v95/APARLIST.TXT
- http://secunia.com/advisories/33529
- http://securitytracker.com/id?1021591=
- http://www-01.ibm.com/support/docview.wss?uid=swg1IZ37696
- http://www-01.ibm.com/support/docview.wss?uid=swg21363936
- http://www-1.ibm.com/support/docview.wss?uid=swg1IZ36534
- http://www-1.ibm.com/support/docview.wss?uid=swg1IZ37697
- http://www.securityfocus.com/bid/33258
- http://www.vupen.com/english/advisories/2009/0137
- https://exchange.xforce.ibmcloud.com/vulnerabilities/47931