Multiple buffer overflows in the DB2 JDBC Applet Server (DB2JDS) service in IBM DB2 9.x and earlier allow remote attackers to (1) execute arbitrary code via a crafted packet to the DB2JDS service on tcp/6789; and cause a denial of service via (2) an invalid LANG parameter or (2) a long packet that generates a "MemTree overflow."
References
Configurations
History
No history.
Information
Published : 2007-05-10 00:19
Updated : 2024-02-04 17:13
NVD link : CVE-2007-2582
Mitre link : CVE-2007-2582
CVE.ORG link : CVE-2007-2582
JSON object : View
Products Affected
ibm
- db2
CWE
CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer