DB: IBM DB2 Database Server Invalid Data Stream Denial of Service (CVE-2009-0173)

This signature detects attempts to exploit a known vulnerability against IBM DB2 Database. A successful attack can result in a denial-of-service condition.

Extended Description

IBM DB2 is prone to multiple denial-of-service vulnerabilities. An attacker can exploit these issues to crash the server and deny service to legitimate users. These issues affect versions prior to DB2 9.1 FP6a, 9.5 FP3a, and 8.1 FP17a.

Affected Products

Ibm db2_universal_database

References

BugTraq: 33258

CVE: CVE-2009-0173

Short Name
DB:DB2:INVALID-DATA-STREAM-DOS
Severity
Major
Recommended
False
Recommended Action
Drop
Category
DB
Keywords
(CVE-2009-0173) CVE-2009-0173 DB2 Data Database Denial IBM Invalid Server Service Stream bid:33258 of
Release Date
04/03/2013
Supported Platforms

srx-branch-12.3

srx-19.3

srx-branch-19.3

vsrx3bsd-19.2

srx-branch-19.4

vsrx-19.4

mx-12.3

mx-19.4

vmx-19.4

mx-19.3

vsrx3bsd-19.4

srx-19.4

vsrx-12.3

vmx-19.3

vsrx-19.2

srx-12.3

Sigpack Version
3336
Port
tcp/50000
False Positive
Unknown
Vendors

Ibm

CVSS Score

5.0

Found a potential security threat?