| Max CVSS | 10.0 | Min CVSS | 2.6 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2009-1905 | 2.6 |
The Common Code Infrastructure component in IBM DB2 8 before FP17, 9.1 before FP7, and 9.5 before FP4, when LDAP security (aka IBMLDAPauthserver) and anonymous bind are enabled, allows remote attackers to bypass password authentication and establish
|
17-08-2017 - 01:30 | 03-06-2009 - 21:00 | |
| CVE-2008-6821 | 10.0 |
Buffer overflow in the DAS server in IBM DB2 8 before FP17, 9.1 before FP5, and 9.5 before FP2 might allow attackers to execute arbitrary code or cause a denial of service (application crash) via unspecified vectors, a different vulnerability than CV
|
17-08-2017 - 01:29 | 03-06-2009 - 21:00 | |
| CVE-2008-3960 | 5.0 |
Unspecified vulnerability in the JDBC Applet Server Service (aka db2jds) in IBM DB2 UDB 8 before Fixpak 17 allows remote attackers to cause a denial of service (service crash) via "malicious packets."
|
08-08-2017 - 01:32 | 11-09-2008 - 01:13 | |
| CVE-2008-2154 | 6.0 |
IBM DB2 8 before FP17, 9.1 before FP5, and 9.5 before FP2 provides an INSTALL_JAR (aka sqlj.install_jar) procedure, which allows remote authenticated users to create or overwrite arbitrary files via unspecified calls.
|
08-08-2017 - 01:30 | 03-06-2009 - 21:00 | |
| CVE-2008-6820 | 10.0 |
The db2fmp process in IBM DB2 8 before FP17, 9.1 before FP5, and 9.5 before FP2 on Windows runs with "OS privilege," which has unknown impact and attack vectors, a different vulnerability than CVE-2008-3856.
|
12-08-2009 - 05:25 | 03-06-2009 - 21:00 |