CVE-2010-3734 Information

Description

The Install component in IBM DB2 UDB 9.5 before FP6a on Linux UNIX and Windows enforces an unintended limit on password length which makes it easier for attackers to obtain access via a brute-force attack.

Reference

ftp://public.dhe.ibm.com/ps/products/db2/fixes/english-us/aparlist/db2_v95/APARLIST.TXT http://www-01.ibm.com/support/docview.wss?uid=swg1IC62856 https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A14764