Improper input validation in Ibm Db2
CVE-2014-6210
IBM DB2 9.7 through FP10, 9.8 through FP5, 10.1 through FP4, and 10.5 before FP5 on Linux, UNIX, and Windows allows remote authenticated users to cause a denial of service (daemon crash) by specifying the same column within multiple ALTER…
Vulnerability class: Drupalgeddon 2 (CVE-2018-7600)
EPSS: 0.013 (80.4th percentile) — read the EPSS interpretation.
Affected products
- Ibm Db2 — versions 9.7, 9.8
- Ibm Db2_connect — versions 10.1, 10.5
- N/a — versions n/a
Weakness classification (CWE)
References
- IT05652 (vendor-advisory, x_refsource_AIXAPAR)
- 62092 (x_refsource_SECUNIA, third-party-advisory)
- IT05651 (vendor-advisory, x_refsource_AIXAPAR)
- 71730 (vdb-entry, x_refsource_BID)
- 1034572 (vdb-entry, x_refsource_SECTRACK)
- IT04138 (vendor-advisory, x_refsource_AIXAPAR, Vendor Advisory)
- psirt@us.ibm.com (x_refsource_CONFIRM)
- psirt@us.ibm.com (x_refsource_CONFIRM)
- IC96934 (vendor-advisory, x_refsource_AIXAPAR)
- ibm-db2-cve20146210-dos(98685) (vdb-entry, x_refsource_XF)