CVE-2010-1560Improper Restriction of Operations within the Bounds of a Memory Buffer in IBM DB2

CWE-119Improper Restriction of Operations within the Bounds of a Memory Buffer3 documents3 sources
Severity
4.0MEDIUMNVD
CNA6.5
EPSS
1.1%
top 21.96%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
IBM DB2
Timeline
PublishedApr 27
Latest updateMay 17

Description

Buffer overflow in the REPEAT function in IBM DB2 9.1 before FP9 allows remote authenticated users to cause a denial of service (trap) via unspecified vectors. NOTE: this might overlap CVE-2010-0462.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 8.0 | Impact: 2.9

Affected Packages1 packages

NVDibm/db29.1+1

Patches

Patch: www-01.ibm.comPatch: www-01.ibm.com

🔴Vulnerability Details

2
GHSA
GHSA-7rmf-wcv2-r7w8: Buffer overflow in the REPEAT function in IBM DB2 92022-05-17
CVEList
CVE-2010-1560: Buffer overflow in the REPEAT function in IBM DB2 92010-04-27
CVE-2010-1560 — IBM DB2 vulnerability | cvebase