Denial of Service Vulnerability in IBM DB2 UDB by IBM
CVE-2007-6052

Currently unrated

Key Information:

Vendor: IBM
Status: Db2 Universal Database
Vendor: CVE Published:; 20 November 2007

Summary

A vulnerability in IBM DB2 UDB 9.1 prior to Fixpak 4 can allow attackers to exploit improper vector aggregation, leading to a denial of service scenario. This may result in a divide-by-zero error, causing the database management system to crash. The specifics regarding the implications of this issue and its direct relationship to security remain somewhat unclear.

References

http://www-1.ibm.com/support/docview.wss?uid=swg21255607

x_refsource_CONFIRM

http://www.vupen.com/english/advisories/2007/3867

vdb-entryx_refsource_VUPEN

http://www.securityfocus.com/bid/26450

vdb-entryx_refsource_BID

Timeline

Vulnerability published
Nov 20, 2007
Vulnerability Reserved
Nov 20, 2007