Unrated severityNVD Advisory· Published Dec 16, 2009· Updated Apr 23, 2026
CVE-2009-4325
CVE-2009-4325
Description
The Client Interfaces component in IBM DB2 8.2 before FP18, 9.1 before FP8, 9.5 before FP5, and 9.7 before FP1 does not validate an unspecified pointer, which allows attackers to overwrite "external memory" via unknown vectors, related to a missing "check for null pointers."
Affected products
37cpe:2.3:a:ibm:db2:8.2:*:*:*:*:*:*:*+ 36 more
- cpe:2.3:a:ibm:db2:8.2:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:db2:8.2:fp1:*:*:*:*:*:*
- cpe:2.3:a:ibm:db2:8.2:fp10:*:*:*:*:*:*
- cpe:2.3:a:ibm:db2:8.2:fp11:*:*:*:*:*:*
- cpe:2.3:a:ibm:db2:8.2:fp12:*:*:*:*:*:*
- cpe:2.3:a:ibm:db2:8.2:fp13:*:*:*:*:*:*
- cpe:2.3:a:ibm:db2:8.2:fp14:*:*:*:*:*:*
- cpe:2.3:a:ibm:db2:8.2:fp15:*:*:*:*:*:*
- cpe:2.3:a:ibm:db2:8.2:fp16:*:*:*:*:*:*
- cpe:2.3:a:ibm:db2:8.2:fp17:*:*:*:*:*:*
- cpe:2.3:a:ibm:db2:8.2:fp2:*:*:*:*:*:*
- cpe:2.3:a:ibm:db2:8.2:fp3:*:*:*:*:*:*
- cpe:2.3:a:ibm:db2:8.2:fp4:*:*:*:*:*:*
- cpe:2.3:a:ibm:db2:8.2:fp5:*:*:*:*:*:*
- cpe:2.3:a:ibm:db2:8.2:fp6:*:*:*:*:*:*
- cpe:2.3:a:ibm:db2:8.2:fp7:*:*:*:*:*:*
- cpe:2.3:a:ibm:db2:8.2:fp8:*:*:*:*:*:*
- cpe:2.3:a:ibm:db2:8.2:fp9:*:*:*:*:*:*
- cpe:2.3:a:ibm:db2:9.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:db2:9.1:fp1:*:*:*:*:*:*
- cpe:2.3:a:ibm:db2:9.1:fp2:*:*:*:*:*:*
- cpe:2.3:a:ibm:db2:9.1:fp3:*:*:*:*:*:*
- cpe:2.3:a:ibm:db2:9.1:fp3a:*:*:*:*:*:*
- cpe:2.3:a:ibm:db2:9.1:fp4:*:*:*:*:*:*
- cpe:2.3:a:ibm:db2:9.1:fp4a:*:*:*:*:*:*
- cpe:2.3:a:ibm:db2:9.1:fp5:*:*:*:*:*:*
- cpe:2.3:a:ibm:db2:9.1:fp6:*:*:*:*:*:*
- cpe:2.3:a:ibm:db2:9.1:fp6a:*:*:*:*:*:*
- cpe:2.3:a:ibm:db2:9.1:fp7:*:*:*:*:*:*
- cpe:2.3:a:ibm:db2:9.5:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:db2:9.5:fp1:*:*:*:*:*:*
- cpe:2.3:a:ibm:db2:9.5:fp2:*:*:*:*:*:*
- cpe:2.3:a:ibm:db2:9.5:fp2a:*:*:*:*:*:*
- cpe:2.3:a:ibm:db2:9.5:fp3:*:*:*:*:*:*
- cpe:2.3:a:ibm:db2:9.5:fp3a:*:*:*:*:*:*
- cpe:2.3:a:ibm:db2:9.5:fp3b:*:*:*:*:*:*
- cpe:2.3:a:ibm:db2:9.7:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
13- ftp.software.ibm.com/ps/products/db2/fixes/english-us/aparlist/db2_v82/APARLIST.TXTnvdPatch
- www-01.ibm.com/support/docview.wssnvdPatchVendor Advisory
- www-01.ibm.com/support/docview.wssnvdExploitVendor Advisory
- www-01.ibm.com/support/docview.wssnvdExploitVendor Advisory
- secunia.com/advisories/37759nvdVendor Advisory
- www.vupen.com/english/advisories/2009/3520nvdVendor Advisory
- ftp.software.ibm.com/ps/products/db2/fixes/english-us/aparlist/db2_v91/APARLIST.TXTnvd
- ftp.software.ibm.com/ps/products/db2/fixes/english-us/aparlist/db2_v95/APARLIST.TXTnvd
- ftp.software.ibm.com/ps/products/db2/fixes/english-us/aparlist/db2_v97/APARLIST.TXTnvd
- www-01.ibm.com/support/docview.wssnvd
- www-01.ibm.com/support/docview.wssnvd
- www-01.ibm.com/support/docview.wssnvd
- www.securityfocus.com/bid/37332nvd
News mentions
0No linked articles in our index yet.