IBM DB2 9.1 < Fix Pack 11 Multiple DoS

This script is Copyright (C) 2012-2015 Tenable Network Security, Inc.

Synopsis :

The remote database server is affected by multiple denial of
service vulnerabilities.

Description :

According to its version, the installation of IBM DB2 9.1 running on
the remote host is prior to Fix Pack 11. It is, therefore, affected by
multiple denial of service vulnerabilities :

- The version of Java that is bundled with the
application can enter an infinite loop when handling
certain operations related to floating point numbers.

- The Distributed Relational Database Architecture (DRDA)
contains an error that can allow denial of service
conditions when handling certain maliciously crafted
requests. (CVE-2012-0710)

See also :

Solution :

Apply IBM DB2 Version 9.1 Fix Pack 11 or later.

Risk factor :

Medium / CVSS Base Score : 5.0
CVSS Temporal Score : 4.3
Public Exploit Available : true

Family: Databases

Nessus Plugin ID: 59644 ()

Bugtraq ID: 46091

CVE ID: CVE-2010-4476