Executive Summary

Informations
NameCVE-2009-2858First vendor Publication2009-08-19
VendorCveLast vendor Modification2009-08-21

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:N/I:N/A:P)
Cvss Base Score5Attack RangeNetwork
Cvss Impact Score2.9Attack ComplexityLow
Cvss Expoit Score10AuthenticationNone Required
Calculate full CVSS 2.0 Vectors scores

Detail

Memory leak in the Security component in IBM DB2 8.1 before FP18 on Unix platforms allows attackers to cause a denial of service (memory consumption) via unspecified vectors, related to private memory within the DB2 memory structure.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2858

CAPEC : Common Attack Pattern Enumeration & Classification

idName
CAPEC-2Inducing Account Lockout
CAPEC-82Violating Implicit Assumptions Regarding XML Content (aka XML Denial of Servi...
CAPEC-147XML Ping of Death
CAPEC-228Resource Depletion through DTD Injection in a SOAP Message

CWE : Common Weakness Enumeration

%idName
100 %CWE-399Resource Management Errors

CPE : Common Platform Enumeration

TypeDescriptionCount
Application55

OpenVAS Exploits

DateDescription
2009-08-24Name : IBM DB2 Multiple Vulnerabilities (Linux)
File : nvt/secpod_ibm_db2_mult_vuln_lin.nasl

Open Source Vulnerability Database (OSVDB)

idDescription
57229IBM DB2 Universal Database Security Component Unspecified Private Memory Leak

Nessus® Vulnerability Scanner

DateDescription
2009-08-20Name : The remote database server is affected by multiple vulnerabilities.
File : db2_81fp18.nasl - Type : ACT_GATHER_INFO

Sources (Detail)

SourceUrl
AIXAPAR http://www-01.ibm.com/support/docview.wss?uid=swg1IZ35635
CONFIRM ftp://ftp.software.ibm.com/ps/products/db2/fixes/english-us/aparlist/db2_v82/...
http://www-01.ibm.com/support/docview.wss?uid=swg24024075

Alert History

If you want to see full details history, please login or register.
0
1
2
DateInformations
2016-04-26 19:02:50
  • Multiple Updates
2014-02-17 10:51:16
  • Multiple Updates
2013-05-10 23:55:47
  • Multiple Updates