CVE-2008-1966 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	4 UNKNOWN	NETWORK	LOW		AV:N/AC:L/Au:S/C:N/I:N/A:P
mitre	CNA	---				---
CVE	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 85%

Vendor	Product	Version
ibm	db2	8.0
ibm	db2	8.0:fp1
ibm	db2	8.0:fp10
ibm	db2	8.0:fp11
ibm	db2	8.0:fp12
ibm	db2	8.0:fp13
ibm	db2	8.0:fp14
ibm	db2	8.0:fp15
ibm	db2	8.0:fp2
ibm	db2	8.0:fp3
ibm	db2	8.0:fp4
ibm	db2	8.0:fp4a
ibm	db2	8.0:fp5
ibm	db2	8.0:fp6
ibm	db2	8.0:fp6a
ibm	db2	8.0:fp6b
ibm	db2	8.0:fp6c
ibm	db2	8.0:fp7
ibm	db2	8.0:fp7a
ibm	db2	8.0:fp7b
ibm	db2	8.0:fp8
ibm	db2	8.0:fp8a
ibm	db2	8.0:fp9
ibm	db2	8.0:fp9a
ibm	db2	9.5
ibm	db2	9.1
ibm	db2	9.1:fp1
ibm	db2	9.1:fp2
ibm	db2	9.1:fp2a
ibm	db2	9.1:fp3
ibm	db2	9.1:fp3a
ibm	db2	9.1:fp4

𝑥

= Vulnerable software versions

Common Weakness Enumeration

CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer
The software performs operations on a memory buffer, but it can read from or write to a memory location that is outside of the intended boundary of the buffer.

References

http://osvdb.org/46268

http://osvdb.org/46269

http://secunia.com/advisories/29022

http://www-1.ibm.com/support/docview.wss?uid=swg1IZ08512

http://www-1.ibm.com/support/docview.wss?uid=swg1IZ08945

http://www-1.ibm.com/support/docview.wss?uid=swg1IZ15496

http://www-1.ibm.com/support/docview.wss?uid=swg21255607

http://www.appsecinc.com/resources/alerts/db2/2008-04.shtml

http://www.securityfocus.com/archive/1/491071/100/0/threaded

http://www.securityfocus.com/bid/28835

http://www.securityfocus.com/bid/29601

https://exchange.xforce.ibmcloud.com/vulnerabilities/41955

http://osvdb.org/46268

http://osvdb.org/46269

http://secunia.com/advisories/29022

http://www-1.ibm.com/support/docview.wss?uid=swg1IZ08512

http://www-1.ibm.com/support/docview.wss?uid=swg1IZ08945

http://www-1.ibm.com/support/docview.wss?uid=swg1IZ15496

http://www-1.ibm.com/support/docview.wss?uid=swg21255607

http://www.appsecinc.com/resources/alerts/db2/2008-04.shtml

http://www.securityfocus.com/archive/1/491071/100/0/threaded

http://www.securityfocus.com/bid/28835

http://www.securityfocus.com/bid/29601

https://exchange.xforce.ibmcloud.com/vulnerabilities/41955