CVE-2011-1373

Current Description

Unspecified vulnerability in IBM DB2 9.7 before FP5 on UNIX, when the Self Tuning Memory Manager (STMM) feature and the AUTOMATIC DATABASE_MEMORY setting are configured, allows local users to cause a denial of service (daemon crash) via unknown vectors.

Basic Data

PublishedNovember 09, 2011
Last ModifiedSeptember 19, 2017
Assignercve@mitre.org
Data TypeCVE
Data FormatMITRE
Data Version4.0
Problem TypeNVD-CWE-noinfo
CVE Data Version4.0

Base Metric V2

CVSS 2 - Version2.0
CVSS 2 - Vector StringAV:L/AC:M/Au:S/C:N/I:N/A:P
CVSS 2 - Access VectorLOCAL
CVSS 2 - Access ComplexityMEDIUM
CVSS 2 - AuthenticationSINGLE
CVSS 2 - Confidentiality ImpactNONE
CVSS 2 - Availability ImpactPARTIAL
CVSS 2 - Base Score1.5
SeverityLOW
Exploitability Score2.7
Impact Score2.9
Obtain All Privilegefalse
Obtain User Privilegefalse
Obtain Other Privilegefalse

Base Metric V3

No data provided.

Configurations

  • OR - Configuration 1
    Cpe VersionPartVendorProductVersionUpdateEditionLanguageSW EditionTarget SWTarget HWOtherVersion Start IncludingVersion End IncludingVersion Start ExcludingVersion End Excluding
    2.3ApplicationIbmDb29.7.0.1*******
    2.3ApplicationIbmDb29.7.0.2*******
    2.3ApplicationIbmDb29.7.0.3*******
    2.3ApplicationIbmDb2********9.7.0.4

Vulnerable Software List

VendorProductVersions
Ibm Db2 *, 9.7.0.1, 9.7.0.2, 9.7.0.3

References

NameSourceURLTags
IC70473http://www-01.ibm.com/support/docview.wss?uid=swg1IC70473AIXAPAR
db2-stmm-dos(71043)https://exchange.xforce.ibmcloud.com/vulnerabilities/71043XF
oval:org.mitre.oval:def:14720https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14720OVAL