) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.
Search Results (Refine Search)
- CPE Product Version: cpe:/a:ibm:db2:9.5:fp4a
| Vuln ID | Summary | CVSS Severity |
|---|---|---|
| CVE-2010-3193 |
Unspecified vulnerability in the DB2STST program in IBM DB2 9.1 before FP9, 9.5 before FP6, and 9.7 before FP2 has unknown impact and attack vectors. Published: August 31, 2010; 6:00:02 PM -0400 |
V3.x:(not available) V2.0: 10.0 HIGH |
| CVE-2010-0462 |
Heap-based buffer overflow in IBM DB2 9.1 before FP9, 9.5 before FP6, and 9.7 before FP2 allows remote authenticated users to have an unspecified impact via a SELECT statement that has a long column name generated with the REPEAT function. Published: January 28, 2010; 3:30:01 PM -0500 |
V3.x:(not available) V2.0: 6.5 MEDIUM |
| CVE-2009-4439 |
Unspecified vulnerability in the Query Compiler, Rewrite, and Optimizer component in IBM DB2 9.5 before FP5 allows remote authenticated users to cause a denial of service (instance crash) by compiling a SQL query. Published: December 28, 2009; 2:30:00 PM -0500 |
V3.x:(not available) V2.0: 4.0 MEDIUM |
| CVE-2009-4438 |
The Query Compiler, Rewrite, and Optimizer component in IBM DB2 9.1 before FP8, 9.5 before FP5, and 9.7 before FP1 does not enforce privilege requirements for access to a (1) sequence or (2) global-variable object, which allows remote authenticated users to make use of data via unspecified vectors. Published: December 28, 2009; 2:30:00 PM -0500 |
V3.x:(not available) V2.0: 6.5 MEDIUM |
| CVE-2009-4335 |
Multiple unspecified vulnerabilities in bundled stored procedures in the Spatial Extender component in IBM DB2 9.5 before FP5 have unknown impact and remote attack vectors, related to "remote exploits." Published: December 16, 2009; 1:30:00 PM -0500 |
V3.x:(not available) V2.0: 10.0 HIGH |