|Resource Management Errors|
|Permissions, Privileges, and Access Controls|
|Vulnerability||Severity Score||Release Date||Summary|
|CVE-2008-3959||5.0||Sept. 10, 2008||
IBM DB2 UDB 8.1 before FixPak 16, 8.2 before FixPak 9, and 9.1 before FixPak 4a allows remote attackers to cause a denial of service (instance crash) via a crafted SQLJRA packet within a CONNECT/ATTACH data stream that simulates a V7 client connect/attach request.
|CVE-2009-2858||5.0||Aug. 19, 2009||
Memory leak in the Security component in IBM DB2 8.1 before FP18 on Unix platforms allows attackers to cause a denial of service (memory consumption) via unspecified vectors, related to private memory within the DB2 memory structure.
|CVE-2009-2860||5.0||Aug. 19, 2009||
Unspecified vulnerability in db2jds in IBM DB2 8.1 before FP18 allows remote attackers to cause a denial of service (service crash) via "malicious packets."
|CVE-2009-2859||4.6||Aug. 19, 2009||
IBM DB2 8.1 before FP18 allows attackers to obtain unspecified access via a das command.