← Back to CVEs
CVE-2009-1906
N/ADescription
The DRDA Services component in IBM DB2 9.1 before FP7 and 9.5 before FP4 allows remote attackers to cause a denial of service (memory corruption and application crash) via an IPv6 address in the correlation token in the APPID string, as demonstrated by an APPID string sent by the third-party DataDirect JDBC driver 3.7.32.
CVE Details
CVSS v3.1 ScoreN/A
Published6/3/2009
Last Modified4/23/2026
Sourcenvd
Honeypot Sightings0
Affected Products
ibm:db2
References
http://secunia.com/advisories/35235(cve@mitre.org)
http://www-01.ibm.com/support/docview.wss?uid=swg1IZ36683(cve@mitre.org)
http://www-01.ibm.com/support/docview.wss?uid=swg1IZ38874(cve@mitre.org)
http://www-01.ibm.com/support/docview.wss?uid=swg21293566(cve@mitre.org)
http://www.securityfocus.com/bid/35171(cve@mitre.org)
http://secunia.com/advisories/35235(af854a3a-2127-422b-91ae-364da2661108)
http://www-01.ibm.com/support/docview.wss?uid=swg1IZ36683(af854a3a-2127-422b-91ae-364da2661108)
http://www-01.ibm.com/support/docview.wss?uid=swg1IZ38874(af854a3a-2127-422b-91ae-364da2661108)
http://www-01.ibm.com/support/docview.wss?uid=swg21293566(af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/35171(af854a3a-2127-422b-91ae-364da2661108)
IOC Correlations
No correlations recorded
This product uses data from the NVD API but is not endorsed or certified by the NVD.