CVE-2006-6638 Information

Description

IBM DB2 8.1 before FixPak 14 allows remote attackers to cause a denial of service via a crafted SQLJRA packet which causes a NULL pointer dereference in the sqle_db2ra_as_recvrequest function in DB2ENGN.DLL a different issue than CVE-2006-4257.

Reference

http://secunia.com/advisories/23397 http://www.appsecinc.com/resources/alerts/db2/2006-11-30.shtml http://www.securityfocus.com/bid/21646 http://www-1.ibm.com/support/docview.wss?uid=swg1IY91847