Ibm: >> Db2 Universal Database >> 8.12 Security Vulnerabilities
Unspecified binaries in IBM DB2 8.x before 8.1 FixPak 15 and 9.1 before Fix Pack 2 allow local users to create or modify arbitrary files via unspecified environment variables related to "unsafe file access."
CVSS Score
7.2
EPSS Score
0.001
Published
2007-02-23
IBM DB2 8.1 before FixPak 14 allows remote attackers to cause a denial of service via a crafted SQLJRA packet, which causes a NULL pointer dereference in the sqle_db2ra_as_recvrequest function in DB2ENGN.DLL, a different issue than CVE-2006-4257.
CVSS Score
5.0
EPSS Score
0.009
Published
2006-12-19