CVSS: 9.8EPSS: 1%CPEs: 4EXPL: 0CVE-2006-3067
https://notcve.org/view.php?id=CVE-2006-3067
19 Jun 2006 — Multiple unspecified vulnerabilities in IBM DB2 Universal Database (UDB) before 8.1 FixPak 12 allow remote attackers to cause a denial of service (application crash) via a (1) "long column list" in the (a) REPLACE INTO and (b) INSERT INTO portions of the LOAD command or a (2) large number of values in an IN clause, possibly related to a buffer overflow. Múltiples vulnerabilidades no especificadas en IBM DB2 Universal Database (UDB), anterior a v8.1 FixPak 12 permite a atacantes remotos causar una denegación... • http://secunia.com/advisories/20579 •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2006-3068
https://notcve.org/view.php?id=CVE-2006-3068
19 Jun 2006 — IBM DB2 Universal Database (UDB) before 8.2 FixPak 12 allows remote attackers to cause a denial of service (application crash) by sending "incorrect information ... regarding the package name/creator," which leads to a "memory overwrite." IBM DB2 Universal Database (UDB), anterior a v8.2 FixPak 12 permite a atacantes remotos provocar una denegación de servicio (caída de aplicación) mediante el envío de "información incorrecta ... sobre el nombre del paquete / creador", que conduce a una "memoria sobrescribi... • http://secunia.com/advisories/20579 • CWE-399: Resource Management Errors •
CVSS: 7.8EPSS: 0%CPEs: 16EXPL: 0CVE-2005-4863
https://notcve.org/view.php?id=CVE-2005-4863
31 Dec 2005 — Stack-based buffer overflow in db2fmp in IBM DB2 7.x and 8.1 allows local users to execute arbitrary code via a long parameter. • http://marc.info/?l=bugtraq&m=110494995113579&w=2 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 0%CPEs: 20EXPL: 0CVE-2005-4864
https://notcve.org/view.php?id=CVE-2005-4864
31 Dec 2005 — Stack-based buffer overflow in libdb2.so in IBM DB2 7.x and 8.1 allows local users to execute arbitrary code via a long DB2LPORT environment variable. • http://marc.info/?l=bugtraq&m=110495092105541&w=2 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 10.0EPSS: 28%CPEs: 24EXPL: 0CVE-2005-4865
https://notcve.org/view.php?id=CVE-2005-4865
31 Dec 2005 — Stack-based buffer overflow in call in IBM DB2 7.x and 8.1 allows remote attackers to execute arbitrary code via a long libname. • http://marc.info/?l=bugtraq&m=110495173031208&w=2 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.8EPSS: 1%CPEs: 24EXPL: 0CVE-2005-4866
https://notcve.org/view.php?id=CVE-2005-4866
31 Dec 2005 — Stack-based buffer overflow in JDBC Applet Server in IBM DB2 8.1 allows remote attackers to execute arbitrary by connecting and sending a long username, then disconnecting gracefully and reconnecting and sending a short username and an unexpected db2java.zip version, which causes a null terminator to be removed and leads to the overflow. • http://marc.info/?l=bugtraq&m=110495251101381&w=2 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.8EPSS: 20%CPEs: 24EXPL: 0CVE-2005-4867
https://notcve.org/view.php?id=CVE-2005-4867
31 Dec 2005 — Stack-based buffer overflow in the SATENCRYPT function in IBM DB2 8.1, when Satellite Administration (SATADMIN) is enabled, allows remote attackers to execute arbitrary code via a long parameter. • http://marc.info/?l=bugtraq&m=110495332301120&w=2 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.1EPSS: 0%CPEs: 5EXPL: 1CVE-2005-4868 – IBM DB2 - Universal Database Information Disclosure
https://notcve.org/view.php?id=CVE-2005-4868
31 Dec 2005 — Shared memory sections and events in IBM DB2 8.1 have default permissions of read and write for the Everyone group, which allows local users to gain unauthorized access, gain sensitive information, such as cleartext passwords, and cause a denial of service. • https://www.exploit-db.com/exploits/24678 • CWE-732: Incorrect Permission Assignment for Critical Resource •
CVSS: 6.8EPSS: 0%CPEs: 12EXPL: 3CVE-2005-4735
https://notcve.org/view.php?id=CVE-2005-4735
31 Dec 2005 — IBM DB2 Universal Database (UDB) 810 before 8.1 FP10 allows remote authenticated users to cause a denial of service (application crash) via (1) certain equality predicates that trigger self-removal, aka IY70808; and (2) a query with more than 32000 elements in the IN-list, aka LI70817. • http://secunia.com/advisories/17031 •
CVSS: 6.8EPSS: 0%CPEs: 12EXPL: 2CVE-2005-4736
https://notcve.org/view.php?id=CVE-2005-4736
31 Dec 2005 — IBM DB2 Universal Database (UDB) 820 before 8.2 FP10 allows remote authenticated users to cause a denial of service (disk consumption) via a hash join (hsjn) that triggers an infinite loop in sqlri_hsjnFlushBlocks. • http://secunia.com/advisories/17031 •