Back to search
CVE-2009-4326
Published: Dec 16, 2009
Modified: Sep 16, 2024
PUBLISHED
Description
The RAND scalar function in the Common Code Infrastructure component in IBM DB2 9.5 before FP5 and 9.7 before FP1, when the Database Partitioning Feature (DPF) is used, produces "repeating" return values, which might allow attackers to defeat protection mechanisms based on randomization by predicting a value.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
IC63946
vendor-advisory
x_refsource_AIXAPAR
http://www-01.ibm.com/support/docview.wss?uid=swg21293566
x_refsource_CONFIRM
IZ44872
vendor-advisory
x_refsource_AIXAPAR
ADV-2009-3520
vdb-entry
x_refsource_VUPEN
37332
vdb-entry
x_refsource_BID
http://www-01.ibm.com/support/docview.wss?uid=swg21412902
x_refsource_CONFIRM
37759
third-party-advisory
x_refsource_SECUNIA
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now