Unrated severityNVD Advisory· Published Dec 19, 2006· Updated Jun 16, 2026
CVE-2006-6638
CVE-2006-6638
Description
IBM DB2 8.1 before FixPak 14 allows remote attackers to cause a denial of service via a crafted SQLJRA packet, which causes a NULL pointer dereference in the sqle_db2ra_as_recvrequest function in DB2ENGN.DLL, a different issue than CVE-2006-4257.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
14cpe:2.3:a:ibm:db2_universal_database:8.10:*:*:*:*:*:*:*+ 12 more
- cpe:2.3:a:ibm:db2_universal_database:8.10:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:db2_universal_database:8.12:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:db2_universal_database:8.1.4:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:db2_universal_database:8.1.5:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:db2_universal_database:8.1.6:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:db2_universal_database:8.1.6c:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:db2_universal_database:8.1.7:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:db2_universal_database:8.1.7b:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:db2_universal_database:8.1.8:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:db2_universal_database:8.1.8a:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:db2_universal_database:8.1.9:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:db2_universal_database:8.1.9a:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:db2_universal_database:8.1:*:aix:*:*:*:*:*
Patches
Vulnerability mechanics
References
4- secunia.com/advisories/23397nvdPatchVendor Advisory
- www-1.ibm.com/support/docview.wssnvdPatch
- www.appsecinc.com/resources/alerts/db2/2006-11-30.shtmlnvdPatchVendor Advisory
- www.securityfocus.com/bid/21646nvdPatch
News mentions
0No linked articles in our index yet.