CVE-2009-4327 Information

Feb 14, 2021 cve

Description

The Common Code Infrastructure component in IBM DB2 9.5 before FP5 and 9.7 before FP1 does not properly validate the size of a memory pool during a creation attempt which allows attackers to cause a denial of service (memory consumption) via unspecified vectors.

Reference

ftp://ftp.software.ibm.com/ps/products/db2/fixes/english-us/aparlist/db2_v95/APARLIST.TXT ftp://ftp.software.ibm.com/ps/products/db2/fixes/english-us/aparlist/db2_v97/APARLIST.TXT http://secunia.com/advisories/37759 http://www.securityfocus.com/bid/37332 http://www.vupen.com/english/advisories/2009/3520 http://www-01.ibm.com/support/docview.wss?uid=swg1IC63179 http://www-01.ibm.com/support/docview.wss?uid=swg1IZ43772 http://www-01.ibm.com/support/docview.wss?uid=swg21293566 http://www-01.ibm.com/support/docview.wss?uid=swg21412902

Share on: