Vulnerability Database

289,697

Total vulnerabilities in the database

CVE-2008-3858

The Downlevel DB2RA Support component in IBM DB2 9.1 before Fixpak 4a allows remote attackers to cause a denial of service (instance crash) via a crafted CONNECT data stream that simulates a V7 client connect request.

  • Published: Aug 28, 2008
  • Updated: Apr 13, 2023
  • CVE: CVE-2008-3858
  • Severity: Low
  • Exploit:

CVSS v2:

  • Severity: Low
  • Score: 4.3
  • AV:N/AC:M/Au:N/C:N/I:N/A:P

CWEs:

Software From Fixed in
ibm / db2_universal_database 9.1-fp4 9.1-fp4.x
ibm / db2_universal_database 9.1-fp2 9.1-fp2.x
ibm / db2_universal_database 9.1-fp3 9.1-fp3.x
ibm / db2_universal_database 9.1 9.1.x
ibm / db2_universal_database 9.1-fp4a 9.1-fp4a.x