IBM DB2 UDB 8 before Fixpak 17 allows remote attackers to cause a denial of service (instance crash) via a crafted CONNECT/ATTACH data stream that simulates a V7 client connect/attach request. NOTE: this may overlap CVE-2008-3858. NOTE: this issue exists because of an incomplete fix for CVE-2008-3959.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Db2 | Ibm | * | 8.0 (including) |
| Db2 | Ibm | 8.0 (including) | 8.0 (including) |
| Db2 | Ibm | 8.0-fp10 (including) | 8.0-fp10 (including) |
| Db2 | Ibm | 8.0-fp11 (including) | 8.0-fp11 (including) |
| Db2 | Ibm | 8.0-fp12 (including) | 8.0-fp12 (including) |
| Db2 | Ibm | 8.0-fp13 (including) | 8.0-fp13 (including) |
| Db2 | Ibm | 8.0-fp14 (including) | 8.0-fp14 (including) |
| Db2 | Ibm | 8.0-fp15 (including) | 8.0-fp15 (including) |
| Db2 | Ibm | 8.0-fp2 (including) | 8.0-fp2 (including) |
| Db2 | Ibm | 8.0-fp3 (including) | 8.0-fp3 (including) |
| Db2 | Ibm | 8.0-fp4 (including) | 8.0-fp4 (including) |
| Db2 | Ibm | 8.0-fp5 (including) | 8.0-fp5 (including) |
| Db2 | Ibm | 8.0-fp6 (including) | 8.0-fp6 (including) |
| Db2 | Ibm | 8.0-fp6a (including) | 8.0-fp6a (including) |
| Db2 | Ibm | 8.0-fp6b (including) | 8.0-fp6b (including) |
| Db2 | Ibm | 8.0-fp6c (including) | 8.0-fp6c (including) |
| Db2 | Ibm | 8.0-fp7 (including) | 8.0-fp7 (including) |
| Db2 | Ibm | 8.0-fp7a (including) | 8.0-fp7a (including) |
| Db2 | Ibm | 8.0-fp7b (including) | 8.0-fp7b (including) |
| Db2 | Ibm | 8.0-fp8 (including) | 8.0-fp8 (including) |
| Db2 | Ibm | 8.0-fp8a (including) | 8.0-fp8a (including) |
| Db2 | Ibm | 8.0-fp9 (including) | 8.0-fp9 (including) |
| Db2 | Ibm | 8.0-fp9a (including) | 8.0-fp9a (including) |