CVE-2008-3853

Currently unrated

Key Information:

Vendor: IBM
Status: Db2 Universal Database
Vendor: CVE Published:; 28 August 2008

Summary

Buffer overflow in the DAS server program in the Core DAS function component in IBM DB2 9.1 before FP4a and 9.5 before FP1 allows remote attackers to execute arbitrary code or cause a denial of service (daemon crash) via unspecified vectors. NOTE: this might be related to CVE-2007-3676.

References

http://www-1.ibm.com/support/docview.wss?uid=swg21255607

x_refsource_CONFIRM

http://www-1.ibm.com/support/docview.wss?uid=swg1IZ12379

vendor-advisoryx_refsource_AIXAPAR

https://exchange.xforce.ibmcloud.com/vulnerabilities/45141

vdb-entryx_refsource_XF

EPSS Score

14% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Aug 28, 2008
Vulnerability Reserved
Aug 28, 2008