QwikSec

Security Database

CVE

CWE

Training

CVE-2008-3959

Published: Sep 9, 2008

Modified: Aug 7, 2024

PUBLISHED

Description

IBM DB2 UDB 8.1 before FixPak 16, 8.2 before FixPak 9, and 9.1 before FixPak 4a allows remote attackers to cause a denial of service (instance crash) via a crafted SQLJRA packet within a CONNECT/ATTACH data stream that simulates a V7 client connect/attach request.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

ibm-db2-connect-attach-dos2(45134)

vdb-entry

x_refsource_XF

vendor-advisory

x_refsource_AIXAPAR

third-party-advisory

x_refsource_SECUNIA

http://www.appsecinc.com/resources/alerts/db2/2008-01.shtml

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.