CVE-2014-6097

Published: Nov 8, 2014Modified: May 6, 2026

4.0

Vector

AV:N/AC:L/Au:S/C:N/I:N/A:P

Exploitability: 8.0 / Impact: 2.9

Source: NVD

Description

IBM DB2 9.7 before FP10 and 9.8 through FP5 on Linux, UNIX, and Windows allows remote authenticated users to cause a denial of service (daemon crash) via a crafted ALTER TABLE statement.

Affected (2)

Products: Ibm: Db2

Ibm

1 product

Db2

Configuration A

2 vulnerable

Vulnerable Software	Affected Versions
Ibm Db2	Version 9.7
Ibm Db2	Version 9.8

Related CWEs

CWE-20

Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

References (8)

http://www-01.ibm.com/support/docview.wss?uid=swg1IT03786

Source: psirt@us.ibm.com

Vendor Advisory

http://www-01.ibm.com/support/docview.wss?uid=swg1IT04034

Source: psirt@us.ibm.com

http://www-01.ibm.com/support/docview.wss?uid=swg21684812

Source: psirt@us.ibm.com

PatchVendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/95945

Source: psirt@us.ibm.com

http://www-01.ibm.com/support/docview.wss?uid=swg1IT03786

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://www-01.ibm.com/support/docview.wss?uid=swg1IT04034

Source: af854a3a-2127-422b-91ae-364da2661108

http://www-01.ibm.com/support/docview.wss?uid=swg21684812

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/95945

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.