CVE-2013-6717

Sažetak

The OLAP query engine in IBM DB2 and DB2 Connect 9.7 through FP9, 9.8 through FP5, 10.1 through FP3, and 10.5 through FP2, and the DB2 pureScale Feature 9.8 for Enterprise Server Edition, allows remote authenticated users to cause a denial of service (database outage and deactivation) via unspecified vectors.

Reference

http://secunia.com/advisories/56451
http://www.ibm.com/support/docview.wss?uid=swg21659490
http://www.securityfocus.com/bid/64336
http://www-01.ibm.com/support/docview.wss?uid=swg1IC95641
http://www-01.ibm.com/support/docview.wss?uid=swg1IC97737
http://www-01.ibm.com/support/docview.wss?uid=swg1IC97738
http://www-01.ibm.com/support/docview.wss?uid=swg1IC97762
http://www-01.ibm.com/support/docview.wss?uid=swg21660041
https://exchange.xforce.ibmcloud.com/vulnerabilities/89116

CVSS

Base:	4.0
Impact:	2.9
Exploitability:	8.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	SINGLE

Impact

Povjerljivost	Cjelovitost	Dostupnost
NONE	NONE	PARTIAL

CVSS vektor

AV:N/AC:L/Au:S/C:N/I:N/A:P

Zadnje važnije ažuriranje

25-09-2018 - 10:29

Objavljeno

19-12-2013 - 22:55