VYPR
Unrated severityNVD Advisory· Published Sep 11, 2008· Updated Jun 16, 2026

CVE-2008-3959

CVE-2008-3959

Description

IBM DB2 UDB 8.1 before FixPak 16, 8.2 before FixPak 9, and 9.1 before FixPak 4a allows remote attackers to cause a denial of service (instance crash) via a crafted SQLJRA packet within a CONNECT/ATTACH data stream that simulates a V7 client connect/attach request.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

25
  • IBM/Db224 versions
    cpe:2.3:a:ibm:db2:8.1:fp1:*:*:*:*:*:*+ 23 more
    • cpe:2.3:a:ibm:db2:8.1:fp1:*:*:*:*:*:*
    • cpe:2.3:a:ibm:db2:8.1:fp10:*:*:*:*:*:*
    • cpe:2.3:a:ibm:db2:8.1:fp11:*:*:*:*:*:*
    • cpe:2.3:a:ibm:db2:8.1:fp12:*:*:*:*:*:*
    • cpe:2.3:a:ibm:db2:8.1:fp13:*:*:*:*:*:*
    • cpe:2.3:a:ibm:db2:8.1:fp14:*:*:*:*:*:*
    • cpe:2.3:a:ibm:db2:8.1:fp2:*:*:*:*:*:*
    • cpe:2.3:a:ibm:db2:8.1:fp3:*:*:*:*:*:*
    • cpe:2.3:a:ibm:db2:8.1:fp4:*:*:*:*:*:*
    • cpe:2.3:a:ibm:db2:8.1:fp5:*:*:*:*:*:*
    • cpe:2.3:a:ibm:db2:8.1:fp6:*:*:*:*:*:*
    • cpe:2.3:a:ibm:db2:8.1:fp7:*:*:*:*:*:*
    • cpe:2.3:a:ibm:db2:8.1:fp8:*:*:*:*:*:*
    • cpe:2.3:a:ibm:db2:8.1:fp9:*:*:*:*:*:*
    • cpe:2.3:a:ibm:db2:8.2:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:db2:8.2:fp1:*:*:*:*:*:*
    • cpe:2.3:a:ibm:db2:8.2:fp2:*:*:*:*:*:*
    • cpe:2.3:a:ibm:db2:8.2:fp3:*:*:*:*:*:*
    • cpe:2.3:a:ibm:db2:8.2:fp4:*:*:*:*:*:*
    • cpe:2.3:a:ibm:db2:8.2:fp5:*:*:*:*:*:*
    • cpe:2.3:a:ibm:db2:8.2:fp6:*:*:*:*:*:*
    • cpe:2.3:a:ibm:db2:8.2:fp7:*:*:*:*:*:*
    • cpe:2.3:a:ibm:db2:*:fp15:*:*:*:*:*:*range: <=8.1
    • cpe:2.3:a:ibm:db2:*:fp8:*:*:*:*:*:*range: <=8.2
  • IBM/DB2 UDBllm-fuzzy

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.