What is the severity of CVE-2007-5652?

CVE-2007-5652 is classified as a vulnerability that could potentially lead to a denial of service or memory corruption.

How do I fix CVE-2007-5652?

To remediate CVE-2007-5652, upgrade IBM DB2 UDB to version 9.1 Fixpak 4 or later.

What versions of IBM DB2 are affected by CVE-2007-5652?

CVE-2007-5652 affects IBM DB2 version 9.1 up to Fixpak 3, including Fixpak 1, 2, and 2a.

What type of attacks can CVE-2007-5652 allow?

CVE-2007-5652 may allow attackers to cause a denial of service or trigger memory corruption due to improper storage management.

Is there a way to test for CVE-2007-5652 in my environment?

Testing for CVE-2007-5652 typically involves reviewing logs and system behavior for signs of instability or crashes related to authentication handling.

Vulnerability/
CVE-2007-5652

high

7.8

CWE

119

23/10/2007

7/8/2024

CVE-2007-5652: Buffer Overflow

First published: Tue Oct 23 2007(Updated: )

IBM DB2 UDB 9.1 before Fixpak 4 does not properly manage storage of a list containing authentication information, which might allow attackers to cause a denial of service (instance crash) or trigger memory corruption. NOTE: the vendor description of this issue is too vague to be certain that it is security-related.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
IBM DB2 Universal Database	=9.1-fp1
IBM DB2 Universal Database	=9.1-fp3
IBM DB2 Universal Database	=9.1-fp2a
IBM DB2 Universal Database	<=9.1
IBM DB2 Universal Database	=9.1-fp2

Remedy

http://secunia.com/advisories/27177

Remedy

http://www-1.ibm.com/support/docview.wss?rs=71&uid=swg21283031

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2007-5652?
CVE-2007-5652 is classified as a vulnerability that could potentially lead to a denial of service or memory corruption.
How do I fix CVE-2007-5652?
To remediate CVE-2007-5652, upgrade IBM DB2 UDB to version 9.1 Fixpak 4 or later.
What versions of IBM DB2 are affected by CVE-2007-5652?
CVE-2007-5652 affects IBM DB2 version 9.1 up to Fixpak 3, including Fixpak 1, 2, and 2a.
What type of attacks can CVE-2007-5652 allow?
CVE-2007-5652 may allow attackers to cause a denial of service or trigger memory corruption due to improper storage management.
Is there a way to test for CVE-2007-5652 in my environment?
Testing for CVE-2007-5652 typically involves reviewing logs and system behavior for signs of instability or crashes related to authentication handling.

agent/type
agent/remedy
collector/mitre-cve
source/MITRE
agent/references
agent/author
agent/last-modified-date
agent/weakness
agent/severity
agent/description
agent/first-publish-date
agent/event
agent/source
agent/softwarecombine
agent/tags
collector/nvd-historical
agent/software-canonical-lookup-request
collector/nvd-index
vendor/ibm
canonical/ibm db2 universal database
version/ibm db2 universal database/9.1-fp1
version/ibm db2 universal database/9.1-fp3
version/ibm db2 universal database/9.1-fp2a
version/ibm db2 universal database/9.1
version/ibm db2 universal database/9.1-fp2

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.