CVE-2005-4866
published 2005-12-31CVE-2005-4866: Stack-based buffer overflow in JDBC Applet Server in IBM DB2 8.1 allows remote attackers to execute arbitrary by connecting and sending a long username, then…
medium6.8CVSS 3.1
AVNACMAuNCPIPAP
Stack-based buffer overflow in JDBC Applet Server in IBM DB2 8.1 allows remote attackers to execute arbitrary by connecting and sending a long username, then disconnecting gracefully and reconnecting and sending a short username and an unexpected db2java.zip version, which causes a null terminator to be removed and leads to the overflow.
Affected
5 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| ibm | db2_universal_database | — | — |
| ibm | db2_universal_database | — | — |
| ibm | db2_universal_database | — | — |
| ibm | db2_universal_database | — | — |
| ibm | db2_universal_database | — | — |