IBM DB2 9.1 < 9.1 Fix Pack 7 / 9.5 < 9.5 Fix Pack 4 Multiple Vulnerabilities
Medium Nessus Network Monitor Plugin ID 5043
SynopsisThe remote IBM DB2 database server is affected by multiple vulnerabilities.
DescriptionAccording to its version, the installation of IBM DB2 9.1 / 9.5 on the remote host is affected by one or more of the following vulnerabilities :
- A denial-of-service issue when the application processes crafted IPv6 addresses in the correlation token. (IZ38874)
- A security-bypass issue exists in the application when LDAP-based authentication is used. (LI73778)
SolutionApply IBM DB2 9.1 Fix Pack 7 or IBM DB2 9.5 Fix Pack 4 or higher