CVSS: 2.1EPSS: 0%CPEs: 1EXPL: 1CVE-2005-4869 – IBM DB2 DTS To String Conversion - Denial of Service
https://notcve.org/view.php?id=CVE-2005-4869
The (1) to_char and (2) to_date function in IBM DB2 8.1 allows local users to cause a denial of service (application crash) via an empty string in the second parameter, which causes a null pointer dereference. • https://www.exploit-db.com/exploits/24677 http://marc.info/?l=bugtraq&m=110495483501494&w=2 http://secunia.com/advisories/12733 http://www-1.ibm.com/support/docview.wss?uid=swg1IY61781 http://www.nextgenss.com/advisories/db205012005G.txt http://www.securityfocus.com/bid/11400 https://exchange.xforce.ibmcloud.com/vulnerabilities/17614 •
CVSS: 7.2EPSS: 0%CPEs: 16EXPL: 0CVE-2005-4863
https://notcve.org/view.php?id=CVE-2005-4863
Stack-based buffer overflow in db2fmp in IBM DB2 7.x and 8.1 allows local users to execute arbitrary code via a long parameter. • http://marc.info/?l=bugtraq&m=110494995113579&w=2 http://secunia.com/advisories/12733 http://www-1.ibm.com/support/docview.wss?uid=swg21181228 http://www-1.ibm.com/support/search.wss?rs=0&q=IY62039&apar=only http://www.nextgenss.com/advisories/db205012005A.txt http://www.securityfocus.com/bid/11397 https://exchange.xforce.ibmcloud.com/vulnerabilities/17615 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 6.5EPSS: 0%CPEs: 12EXPL: 0CVE-2005-4738
https://notcve.org/view.php?id=CVE-2005-4738
IBM DB2 Universal Database (UDB) 810 before ESE AIX 5765F4100 does not ensure that a user has execute privileges before permitting object creation based on routines, which allows remote authenticated users to gain privileges. • http://secunia.com/advisories/17031 http://www-1.ibm.com/support/docview.wss?uid=swg1IY71865 http://www.securityfocus.com/bid/15126 •
CVSS: 7.5EPSS: 0%CPEs: 12EXPL: 0CVE-2005-4737
https://notcve.org/view.php?id=CVE-2005-4737
IBM DB2 Universal Database (UDB) 820 before ESE AIX 5765F4100 allows remote authenticated users to cause a denial of service (CPU consumption) by "abnormally" terminating a connection, which prevents db2agents from being properly cleared. • http://secunia.com/advisories/17031 http://www-1.ibm.com/support/docview.wss?uid=swg1IY71587 http://www.securityfocus.com/bid/15126 •
CVSS: 6.8EPSS: 0%CPEs: 12EXPL: 0CVE-2005-4739
https://notcve.org/view.php?id=CVE-2005-4739
IBM DB2 Universal Database (UDB) 820 before version 8 FixPak 10 (s050811) allows remote authenticated users to cause a denial of service (application crash) by using a table function for an instance of snapshot_tbreorg, which triggers a trap in sqlnr_EStoE_action. • http://secunia.com/advisories/17031 http://www-1.ibm.com/support/docview.wss?uid=swg1IY72588 http://www.securityfocus.com/bid/15126 •