Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

IBM DB2 9.1 < 9.1 Fix Pack 7 / 9.5 < 9.5 Fix Pack 4 Multiple Vulnerabilities

Medium

Synopsis

The remote IBM DB2 database server is affected by multiple vulnerabilities.

Description

According to its version, the installation of IBM DB2 9.1 / 9.5 on the remote host is affected by one or more of the following vulnerabilities :

- A denial-of-service issue when the application processes crafted IPv6 addresses in the correlation token. (IZ38874) - A security-bypass issue exists in the application when LDAP-based authentication is used. (LI73778)

Solution

Apply IBM DB2 9.1 Fix Pack 7 or IBM DB2 9.5 Fix Pack 4 or higher