What is the severity of CVE-2014-6210?

CVE-2014-6210 has a moderate severity rating due to its ability to cause a denial of service.

How do I fix CVE-2014-6210?

To mitigate CVE-2014-6210, apply the latest fix packs for IBM DB2 that address this vulnerability.

What versions are affected by CVE-2014-6210?

CVE-2014-6210 affects IBM DB2 versions 9.7 through FP10, 9.8 through FP5, 10.1 through FP4, and 10.5 before FP5.

What kind of attack does CVE-2014-6210 allow?

CVE-2014-6210 allows remote authenticated users to cause denial of service by executing multiple ALTER TABLE statements on the same column.

Is CVE-2014-6210 a local or remote vulnerability?

CVE-2014-6210 is a remote vulnerability that requires authenticated access to IBM DB2.

Vulnerability/
CVE-2014-6210

medium

CWE

12/12/2014

6/8/2024

CVE-2014-6210: Input Validation

First published: Fri Dec 12 2014(Updated: )

IBM DB2 9.7 through FP10, 9.8 through FP5, 10.1 through FP4, and 10.5 before FP5 on Linux, UNIX, and Windows allows remote authenticated users to cause a denial of service (daemon crash) by specifying the same column within multiple ALTER TABLE statements.

Credit: psirt@us.ibm.com

Affected Software	Affected Version	How to fix
IBM DB2 Universal Database	=9.7
IBM DB2 Universal Database	=9.8
IBM DB2 Connect	=10.1
IBM DB2 Connect	=10.5

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2014-6210?
CVE-2014-6210 has a moderate severity rating due to its ability to cause a denial of service.
How do I fix CVE-2014-6210?
To mitigate CVE-2014-6210, apply the latest fix packs for IBM DB2 that address this vulnerability.
What versions are affected by CVE-2014-6210?
CVE-2014-6210 affects IBM DB2 versions 9.7 through FP10, 9.8 through FP5, 10.1 through FP4, and 10.5 before FP5.
What kind of attack does CVE-2014-6210 allow?
CVE-2014-6210 allows remote authenticated users to cause denial of service by executing multiple ALTER TABLE statements on the same column.
Is CVE-2014-6210 a local or remote vulnerability?
CVE-2014-6210 is a remote vulnerability that requires authenticated access to IBM DB2.

agent/references
agent/type
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/author
agent/severity
agent/weakness
agent/first-publish-date
agent/description
agent/event
agent/source
agent/tags
agent/softwarecombine
collector/nvd-index
agent/software-canonical-lookup-request
vendor/ibm
canonical/ibm db2 universal database
version/ibm db2 universal database/9.7
version/ibm db2 universal database/9.8
canonical/ibm db2 connect
version/ibm db2 connect/10.1
version/ibm db2 connect/10.5

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.