CVE-2016-0215

{"id": "CVE-2016-0215", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 4.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:S/C:N/I:N/A:P", "authentication": "SINGLE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 8.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV30": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.0", "baseScore": 6.5, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 2.8}]}, "published": "2018-01-16T19:29:00.887", "references": [{"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21979986", "tags": ["Patch", "Vendor Advisory"], "source": "psirt@us.ibm.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-20"}]}], "descriptions": [{"lang": "en", "value": "IBM DB2 9.7, 10.1 before FP6, and 10.5 before FP8 on AIX, Linux, HP, Solaris and Windows allow remote authenticated users to cause a denial of service (daemon crash) via a SELECT statement with a subquery containing the AVG OLAP function on an Oracle compatible database."}, {"lang": "es", "value": "IBM DB2 9.7, 10.1 anterior a FP6 y 10.5 anterior a FP8 en AIX, Linux, HP, Solaris y Windows permite que usuarios autenticados remotos provoquen una denegaci\u00f3n de servicio (cierre inesperado del demonio) mediante una instrucci\u00f3n SELECT con una subcadena que contiene la funci\u00f3n AVG OLAP en una base de datos compatible con Oracle."}], "lastModified": "2018-02-05T20:12:04.177", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:ibm:db2:9.7:*:*:*:advanced_enterprise_server:*:*:*", "vulnerable": true, "matchCriteriaId": "01AAB8D8-7C12-4875-A2B1-1A38AE5089F1"}, {"criteria": "cpe:2.3:a:ibm:db2:9.7:*:*:*:advanced_workgroup_server:*:*:*", "vulnerable": true, "matchCriteriaId": "C8A89B68-85AE-4E74-A7FA-A3427B749184"}, {"criteria": "cpe:2.3:a:ibm:db2:9.7:*:*:*:connect_application_server:*:*:*", "vulnerable": true, "matchCriteriaId": "7300C988-1E37-4223-96AC-F1AD29AD6A01"}, {"criteria": "cpe:2.3:a:ibm:db2:9.7:*:*:*:connect_enterprise:*:*:*", "vulnerable": true, "matchCriteriaId": "A886F573-1738-43FC-857D-E400D21D9EEF"}, {"criteria": "cpe:2.3:a:ibm:db2:9.7:*:*:*:connect_unlimited:system_i:*:*", "vulnerable": true, "matchCriteriaId": "1DDAAA36-B373-4274-98EF-3A8D09583D58"}, {"criteria": "cpe:2.3:a:ibm:db2:9.7:*:*:*:connect_unlimited:system_z:*:*", "vulnerable": true, "matchCriteriaId": "407B7D0D-BEB2-435F-825E-7F05DB839411"}, {"criteria": "cpe:2.3:a:ibm:db2:9.7:*:*:*:enterprise_server:*:*:*", "vulnerable": true, "matchCriteriaId": "5AE05CC8-1F9F-443C-B730-9A638B265FCA"}, {"criteria": "cpe:2.3:a:ibm:db2:9.7:*:*:*:express:*:*:*", "vulnerable": true, "matchCriteriaId": "ACEB3F4A-6411-4456-9B89-A43562189BD3"}, {"criteria": "cpe:2.3:a:ibm:db2:9.7:*:*:*:workgroup_server:*:*:*", "vulnerable": true, "matchCriteriaId": "588D7056-6628-44F0-87C3-A7E6A3632E00"}, {"criteria": "cpe:2.3:a:ibm:db2:10.1:*:*:*:advanced_enterprise_server:*:*:*", "vulnerable": true, "matchCriteriaId": "F7581189-E410-4A9E-82C3-06FC7C083521"}, {"criteria": "cpe:2.3:a:ibm:db2:10.1:*:*:*:advanced_workgroup_server:*:*:*", "vulnerable": true, "matchCriteriaId": "EFFAD344-C474-46AD-9AA4-77522D6F824C"}, {"criteria": "cpe:2.3:a:ibm:db2:10.1:*:*:*:connect_application_server:*:*:*", "vulnerable": true, "matchCriteriaId": "5164C026-542F-447B-8A74-C1470DA6645E"}, {"criteria": "cpe:2.3:a:ibm:db2:10.1:*:*:*:connect_enterprise:*:*:*", "vulnerable": true, "matchCriteriaId": "537632F6-915D-42C8-9557-37E2B31BC059"}, {"criteria": "cpe:2.3:a:ibm:db2:10.1:*:*:*:connect_unlimited:system_i:*:*", "vulnerable": true, "matchCriteriaId": "6C2F777F-9171-475B-8165-1A60641AE263"}, {"criteria": "cpe:2.3:a:ibm:db2:10.1:*:*:*:connect_unlimited:system_z:*:*", "vulnerable": true, "matchCriteriaId": "3C548E05-CFD4-4776-850C-51EFADE2745D"}, {"criteria": "cpe:2.3:a:ibm:db2:10.1:*:*:*:enterprise_server:*:*:*", "vulnerable": true, "matchCriteriaId": "AC632967-B490-4EAD-BA37-AADE4D71B328"}, {"criteria": "cpe:2.3:a:ibm:db2:10.1:*:*:*:express:*:*:*", "vulnerable": true, "matchCriteriaId": "8D274B00-C986-4A5D-94B2-79F4A613D951"}, {"criteria": "cpe:2.3:a:ibm:db2:10.1:*:*:*:workgroup_server:*:*:*", "vulnerable": true, "matchCriteriaId": "1C582B53-3F65-4CDA-B6E0-F5AEC228E34E"}, {"criteria": "cpe:2.3:a:ibm:db2:10.5:*:*:*:advanced_enterprise_server:*:*:*", "vulnerable": true, "matchCriteriaId": "7A227837-D25A-4378-A1FA-7C104638AAF9"}, {"criteria": "cpe:2.3:a:ibm:db2:10.5:*:*:*:advanced_workgroup_server:*:*:*", "vulnerable": true, "matchCriteriaId": "F2446FCC-01B4-4C78-8C07-072A8CBA756D"}, {"criteria": "cpe:2.3:a:ibm:db2:10.5:*:*:*:connect_application_server:*:*:*", "vulnerable": true, "matchCriteriaId": "08F4CF0C-6FB9-4105-9362-77E7C6D7DE69"}, {"criteria": "cpe:2.3:a:ibm:db2:10.5:*:*:*:connect_enterprise:*:*:*", "vulnerable": true, "matchCriteriaId": "3EB89228-61ED-45A4-B676-17665E18759E"}, {"criteria": "cpe:2.3:a:ibm:db2:10.5:*:*:*:connect_unlimited:system_i:*:*", "vulnerable": true, "matchCriteriaId": "C03364AF-D21F-4F5F-B02E-E69E042567C0"}, {"criteria": "cpe:2.3:a:ibm:db2:10.5:*:*:*:connect_unlimited:system_z:*:*", "vulnerable": true, "matchCriteriaId": "BA1F1069-5361-4E75-AD69-BD499AD1100F"}, {"criteria": "cpe:2.3:a:ibm:db2:10.5:*:*:*:enterprise_server:*:*:*", "vulnerable": true, "matchCriteriaId": "3635D883-4AC7-4C0D-9838-85FE5B517578"}, {"criteria": "cpe:2.3:a:ibm:db2:10.5:*:*:*:express:*:*:*", "vulnerable": true, "matchCriteriaId": "9AFEA656-426C-4F18-9737-8985531C7A93"}, {"criteria": "cpe:2.3:a:ibm:db2:10.5:*:*:*:workgroup_server:*:*:*", "vulnerable": true, "matchCriteriaId": "38F1E1DE-5DA9-4FC0-B16F-78450FF840EF"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:hp:hp-ux:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "F480AA32-841A-4E68-9343-B2E7548B0A0C"}, {"criteria": "cpe:2.3:o:ibm:aix:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "E492C463-D76E-49B7-A4D4-3B499E422D89"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "703AF700-7A70-47E2-BC3A-7FD03B3CA9C1"}, {"criteria": "cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "A2572D17-1DE6-457B-99CC-64AFD54487EA"}, {"criteria": "cpe:2.3:o:oracle:solaris:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "91F372EA-3A78-4703-A457-751B2C98D796"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:ibm:db2:9.8:*:*:*:enterprise_server:*:*:*", "vulnerable": true, "matchCriteriaId": "4E153CD0-80EA-42CC-9105-3E8C3651F1B8"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:ibm:aix:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "E492C463-D76E-49B7-A4D4-3B499E422D89"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "703AF700-7A70-47E2-BC3A-7FD03B3CA9C1"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "psirt@us.ibm.com"}