Mntsnow
10-10-2003, 7:27 AM
VERSIONS AFFECTED
IBM DB2 Universal Database
DESCRIPTION
A Denial of Service (DoS) condition exists in IBM's DB2 Universal Database. IBM DB2's UDP-based discovery service, listening on port 523, shut downs when it receives more than 20 bytes of data. After the discovery service crashes, the service requires a restart.
VENDOR RESPONSE
IBM has released FixPak 10a (http://www-3.ibm.com/cgi-bin/db2www/data/db2/udb/winos2unix/support/download.d2w/report) to address this vulnerability.
IBM DB2 Universal Database
DESCRIPTION
A Denial of Service (DoS) condition exists in IBM's DB2 Universal Database. IBM DB2's UDP-based discovery service, listening on port 523, shut downs when it receives more than 20 bytes of data. After the discovery service crashes, the service requires a restart.
VENDOR RESPONSE
IBM has released FixPak 10a (http://www-3.ibm.com/cgi-bin/db2www/data/db2/udb/winos2unix/support/download.d2w/report) to address this vulnerability.