CVE-2009-4327
Description
IBM DB2 9.5 before FP5 and 9.7 before FP1 have a denial of service vulnerability in Common Code Infrastructure due to improper validation of memory pool size.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
IBM DB2 9.5 before FP5 and 9.7 before FP1 have a denial of service vulnerability in Common Code Infrastructure due to improper validation of memory pool size.
Vulnerability
The Common Code Infrastructure component in IBM DB2 9.5 before FP5 and 9.7 before FP1 does not properly validate the size of a memory pool during a creation attempt, allowing attackers to cause excessive memory consumption [1].
Exploitation
An attacker can exploit this vulnerability via unspecified vectors, likely network-based, without requiring authentication or special privileges [1].
Impact
Successful exploitation leads to denial of service due to memory exhaustion [1].
Mitigation
The vulnerability is fixed in IBM DB2 9.5 Fix Pack 5 and 9.7 Fix Pack 1 [1]. No workarounds have been disclosed.
AI Insight generated on May 24, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
9cpe:2.3:a:ibm:db2:9.5:*:*:*:*:*:*:*+ 8 more
- cpe:2.3:a:ibm:db2:9.5:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:db2:9.5:fp1:*:*:*:*:*:*
- cpe:2.3:a:ibm:db2:9.5:fp2:*:*:*:*:*:*
- cpe:2.3:a:ibm:db2:9.5:fp2a:*:*:*:*:*:*
- cpe:2.3:a:ibm:db2:9.5:fp3:*:*:*:*:*:*
- cpe:2.3:a:ibm:db2:9.5:fp3a:*:*:*:*:*:*
- cpe:2.3:a:ibm:db2:9.5:fp3b:*:*:*:*:*:*
- cpe:2.3:a:ibm:db2:9.7:*:*:*:*:*:*:*
- (no CPE)range: 9.5 before FP5, 9.7 before FP1
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
9- www-01.ibm.com/support/docview.wssnvdPatch
- secunia.com/advisories/37759nvdVendor Advisory
- www-01.ibm.com/support/docview.wssnvdVendor Advisory
- www.vupen.com/english/advisories/2009/3520nvdVendor Advisory
- ftp.software.ibm.com/ps/products/db2/fixes/english-us/aparlist/db2_v95/APARLIST.TXTnvd
- ftp.software.ibm.com/ps/products/db2/fixes/english-us/aparlist/db2_v97/APARLIST.TXTnvd
- www-01.ibm.com/support/docview.wssnvd
- www-01.ibm.com/support/docview.wssnvd
- www.securityfocus.com/bid/37332nvd
News mentions
0No linked articles in our index yet.