Info

Disclosure

Nov 10, 2005

Discovery

Unknown

Dates

Exploit

Unknown

Solution

Unknown

Description

IBM DB2 Content Manager contains a flaw that may allow a remote/local denial of service. The issue is triggered when a LZH file is processed through INSO code, and will result in a loss of availability for the service.

Classification

Location: Local Access Required
Attack Type: Denial of Service
Impact: Loss of Availability
Exploit: Exploit Unknown
Disclosure: OSVDB Verified

Solution

Currently, there are no known workarounds or upgrades to correct this issue. However, IBM has released a fix pack to address this vulnerability.

Products

International Business Machines Corporation	DB2 Content Manager Version	8.2 Fix Pack 1
		8.2 Fix Pack 2
		8.2 Fix Pack 3
		8.2 Fix Pack 4
		8.2 Fix Pack 5
		8.2 Fix Pack 6
		8.2 Fix Pack 7
		8.2 Fix Pack 8
		8.2 Fix Pack 9

References

Bugtraq ID: 15376
Secunia Advisory ID: 17388
CVE ID: 2005-3569 (see also: NVD)
Related OSVDB ID: 20707
Vendor Specific Solution URL: http://www-1.ibm.com/support/docview.wss?uid=swg24010789
Vendor Specific Advisory URL: http://www-1.ibm.com/support/docview.wss?uid=swg27005891&aid=3
Keyword: IO01280

Credit

Unknown or Incomplete

Direct URL: http://osvdb.org/36218

Info

Disclosure

Discovery

Dates

Exploit

Solution

Description

Classification

Solution

Products

International Business Machines Corporation

DB2 Content Manager Version

References

Credit