Shodan
Vulnerabilities
Vulnerable Software
Ibm:  >> Db2 Universal Database  Security Vulnerabilities
CVE-2005-4736
IBM DB2 Universal Database (UDB) 820 before 8.2 FP10 allows remote authenticated users to cause a denial of service (disk consumption) via a hash join (hsjn) that triggers an infinite loop in sqlri_hsjnFlushBlocks.
CVSS Score
6.8
EPSS Score
0.007
Published
2005-12-31
CVE-2005-4737
IBM DB2 Universal Database (UDB) 820 before ESE AIX 5765F4100 allows remote authenticated users to cause a denial of service (CPU consumption) by "abnormally" terminating a connection, which prevents db2agents from being properly cleared.
CVSS Score
7.5
EPSS Score
0.006
Published
2005-12-31
CVE-2005-4738
IBM DB2 Universal Database (UDB) 810 before ESE AIX 5765F4100 does not ensure that a user has execute privileges before permitting object creation based on routines, which allows remote authenticated users to gain privileges.
CVSS Score
6.5
EPSS Score
0.005
Published
2005-12-31
CVE-2005-4739
IBM DB2 Universal Database (UDB) 820 before version 8 FixPak 10 (s050811) allows remote authenticated users to cause a denial of service (application crash) by using a table function for an instance of snapshot_tbreorg, which triggers a trap in sqlnr_EStoE_action.
CVSS Score
6.8
EPSS Score
0.006
Published
2005-12-31
CVE-2005-4740
IBM DB2 Universal Database (UDB) 810 before version 8 FixPak 10 allows remote authenticated users to cause a denial of service (db2jd service crash) by "connecting from a downlevel client."
CVSS Score
4.0
EPSS Score
0.006
Published
2005-12-31
CVE-2005-4863
Stack-based buffer overflow in db2fmp in IBM DB2 7.x and 8.1 allows local users to execute arbitrary code via a long parameter.
CVSS Score
7.2
EPSS Score
0.0
Published
2005-12-31
CVE-2005-4864
Stack-based buffer overflow in libdb2.so in IBM DB2 7.x and 8.1 allows local users to execute arbitrary code via a long DB2LPORT environment variable.
CVSS Score
7.2
EPSS Score
0.0
Published
2005-12-31
CVE-2005-4865
Stack-based buffer overflow in call in IBM DB2 7.x and 8.1 allows remote attackers to execute arbitrary code via a long libname.
CVSS Score
10.0
EPSS Score
0.288
Published
2005-12-31
CVE-2005-4866
Stack-based buffer overflow in JDBC Applet Server in IBM DB2 8.1 allows remote attackers to execute arbitrary by connecting and sending a long username, then disconnecting gracefully and reconnecting and sending a short username and an unexpected db2java.zip version, which causes a null terminator to be removed and leads to the overflow.
CVSS Score
6.8
EPSS Score
0.016
Published
2005-12-31
CVE-2005-4867
Stack-based buffer overflow in the SATENCRYPT function in IBM DB2 8.1, when Satellite Administration (SATADMIN) is enabled, allows remote attackers to execute arbitrary code via a long parameter.
CVSS Score
9.3
EPSS Score
0.205
Published
2005-12-31


Products
Pricing
Contact Us

Shodan ® - All rights reserved