CVE-2005-4735

IBM DB2 Universal Database (UDB) 810 before 8.1 FP10 allows remote authenticated users to cause a denial of service (application crash) via (1) certain equality predicates that trigger self-removal, aka IY70808; and (2) a query with more than 32000 elements in the IN-list, aka LI70817.

Published: Dec 31, 2005
Updated: Apr 13, 2023
CVE: CVE-2005-4735
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 6.8
AV:N/AC:L/Au:S/C:N/I:N/A:C

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
ibm / db2_universal_database	8.1.4	8.1.4.x
ibm / db2_universal_database	8.1.6	8.1.6.x
ibm / db2_universal_database	8.1	8.1.x
ibm / db2_universal_database	8.1.8a	8.1.8a.x
ibm / db2_universal_database	8.1.6c	8.1.6c.x
ibm / db2_universal_database	8.1.8	8.1.8.x
ibm / db2_universal_database	8.1.7b	8.1.7b.x
ibm / db2_universal_database	8.0	8.0.x
ibm / db2_universal_database	8.1.5	8.1.5.x
ibm / db2_universal_database	8.1.7	8.1.7.x
ibm / db2_universal_database	8.1.9a	8.1.9a.x
ibm / db2_universal_database	8.1.9	8.1.9.x

Vulnerability Database

289,697

CVE-2005-4735