NVD

Id
49171  
Name
CVE-2009-1906  
Description
The DRDA Services component in IBM DB2 9.1 before FP7 and 9.5 before FP4 allows remote attackers to cause a denial of service (memory corruption and application crash) via an IPv6 address in the correlation token in the APPID string, as demonstrated by an APPID string sent by the third-party DataDirect JDBC driver 3.7.32.  
Reject
 
CVSS Version
2  
CVSS Score
4.3  
Severity
Medium  
CVSS Base Score
4.3  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:N/I:N/A:P)  
Pub Date
2017-01-07  
Published
2009-06-03  
Modified Date
2009-06-10  
Seq
2009-1906  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
248992 49171 CVE-2009-1906 IZ36683  View
248993 49171 CVE-2009-1906 IZ38874  View
248994 49171 CVE-2009-1906 http://www-01.ibm.com/support/docview.wss?uid=swg21293566  View
248995 49171 CVE-2009-1906 35171  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
40559 JVNDB-2009-001565 IBM DB2 におけるサービス運用妨害 (DoS) の脆弱性 IBM DB2 の DRDA Services コンポーネントには、APPID 文字列内の Correlation Token において IPv6 アドレスの処理に不備があるため、サービス運用妨害 (DoS) 状態となる脆弱性が存在します。 CVE-2009-1906 39337 CVE-2009-1906 49171 4.3 http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001565.html 2009-06-03 2009-07-06 View