Vulnerabilities > CVE-2011-1373 - Remote Denial of Service vulnerability in IBM DB2

CVSS 1.5 - LOW

Attack vector

LOCAL

Attack complexity

MEDIUM

Privileges required

SINGLE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

PARTIAL

local

ibm

nessus

NVD

Published: 2011-11-09

Updated: 2017-09-19

Summary

Unspecified vulnerability in IBM DB2 9.7 before FP5 on UNIX, when the Self Tuning Memory Manager (STMM) feature and the AUTOMATIC DATABASE_MEMORY setting are configured, allows local users to cause a denial of service (daemon crash) via unknown vectors.

Vulnerable Configurations

Part	Description	Count
Application	Ibm IBM DB2 9.7.0.1 IBM DB2 9.7.0.2 IBM DB2 9.7.0.3 IBM DB2 - IBM DB2 8.0 IBM DB2 8.1 IBM DB2 8.1.4 IBM DB2 8.1.5 IBM DB2 8.1.6 IBM DB2 8.1.6C IBM DB2 8.1.7 IBM DB2 8.1.7B IBM DB2 8.1.8 IBM DB2 8.1.8A IBM DB2 8.1.9 IBM DB2 8.1.9A IBM DB2 8.2 IBM DB2 8.2.0 IBM DB2 8.2.1 IBM DB2 8.2.2 IBM DB2 8.10 IBM DB2 8.12 IBM DB2 9.0 IBM DB2 9.1 IBM DB2 9.1.0.1 IBM DB2 9.1.0.2 IBM DB2 9.1.0.3 IBM DB2 9.1.0.4 IBM DB2 9.1.0.5 IBM DB2 9.1.0.6 IBM DB2 9.1.0.7 IBM DB2 9.1.0.8 IBM DB2 9.1.0.9 IBM DB2 9.1.0.10 IBM DB2 9.1.0.11 IBM DB2 9.1.1000.504 IBM DB2 9.5 IBM DB2 9.5.0.1 IBM DB2 9.5.0.2 IBM DB2 9.5.0.3 IBM DB2 9.5.0.4 IBM DB2 9.5.0.5 IBM DB2 9.5.0.6 IBM DB2 9.5.0.7 IBM DB2 9.5.0.8 IBM DB2 9.5.0.9 IBM DB2 9.5.0.10 IBM DB2 9.5.800.186 IBM DB2 9.7 IBM DB2 9.7.0.0 IBM DB2 9.7.0.4	178

Nessus

NASL family	Databases
NASL id	DB2_97FP5.NASL
description	According to its version, the installation of IBM DB2 9.7 running on the remote host is prior to Fix Pack 5. It is, therefore, affected by multiple denial of service vulnerabilities : - On Unix and Unix-like systems with both the Self Tuning Memory Manager (STMM) feature enabled and the
last seen	2020-06-01
modified	2020-06-02
plugin id	56928
published	2011-11-23
reporter	This script is Copyright (C) 2011-2018 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/56928
title	IBM DB2 9.7 < Fix Pack 5 Multiple Denial of Service Vulnerabilities
code	# # (C) Tenable Network Security, Inc. # include("compat.inc"); if (description) { script_id(56928); script_version("1.13"); script_cvs_date("Date: 2018/11/15 20:50:21"); script_cve_id("CVE-2010-4476", "CVE-2011-1373"); script_bugtraq_id(46091, 50686); script_name(english:"IBM DB2 9.7 < Fix Pack 5 Multiple Denial of Service Vulnerabilities"); script_summary(english:"Checks DB2 signature."); script_set_attribute(attribute:"synopsis", value: "The remote database server is affected by multiple denial of service vulnerabilities."); script_set_attribute(attribute:"description", value: "According to its version, the installation of IBM DB2 9.7 running on the remote host is prior to Fix Pack 5. It is, therefore, affected by multiple denial of service vulnerabilities : - On Unix and Unix-like systems with both the Self Tuning Memory Manager (STMM) feature enabled and the 'DATABASE_MEMORY' option set to 'AUTOMATIC', local users are able to carry out denial of service attacks via unknown vectors. (IC70473 / CVE-2011-1373) - A denial of service vulnerability exists in the version of Java that is bundled with the IBM Software Development Kit for Java. (PM32387 / CVE-2010-4476)"); script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?be5c7fe3"); script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?bf39bb4c"); script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?41b02357"); script_set_attribute(attribute:"see_also", value:"http://www-01.ibm.com/support/docview.wss?uid=swg1IC70473"); script_set_attribute(attribute:"solution", value:"Apply IBM DB2 version 9.7 Fix Pack 5 or later."); script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P"); script_set_cvss_temporal_vector("CVSS2#E:H/RL:OF/RC:C"); script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"); script_set_cvss3_temporal_vector("CVSS:3.0/E:H/RL:O/RC:C"); script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available"); script_set_attribute(attribute:"exploit_available", value:"true"); script_set_attribute(attribute:"exploited_by_malware", value:"true"); script_set_attribute(attribute:"vuln_publication_date", value:"2011/10/28"); script_set_attribute(attribute:"patch_publication_date", value:"2011/10/28"); script_set_attribute(attribute:"plugin_publication_date", value:"2011/11/23"); script_set_attribute(attribute:"cpe", value:"cpe:/a:ibm:db2"); script_set_attribute(attribute:"plugin_type", value:"remote"); script_end_attributes(); script_category(ACT_GATHER_INFO); script_family(english:"Databases"); script_copyright(english:"This script is Copyright (C) 2011-2018 and is owned by Tenable, Inc. or an Affiliate thereof."); script_dependencies("db2_das_detect.nasl"); script_require_ports("Services/db2das", 523); exit(0); } include("global_settings.inc"); include("misc_func.inc"); include("db2_report_func.inc"); port = get_service(svc:"db2das", default:523, exit_on_fail:TRUE); level = get_kb_item_or_exit("DB2/"+port+"/Level"); if (level !~ "^9\.7\.") exit(0, "The version of IBM DB2 listening on port "+port+" is not 9.7 and thus is not affected."); platform = get_kb_item_or_exit("DB2/"+port+"/Platform"); platform_name = get_kb_item("DB2/"+port+"/Platform_Name"); if (isnull(platform_name)) { platform_name = platform; report_phrase = "platform " + platform; } else report_phrase = platform_name; vuln = FALSE; # Windows 32-bit/64-bit if (platform == 5 \|\| platform == 23) { fixed_level = '9.7.500.702'; if (ver_compare(ver:level, fix:fixed_level) == -1) vuln = TRUE; } # Others else if ( # Linux, 2.6 kernel 32/64-bit platform == 18 \|\| platform == 30 \|\| # AIX platform == 20 ) { fixed_level = '9.7.0.5'; if (ver_compare(ver:level, fix:fixed_level) == -1) vuln = TRUE; } else { info = 'Nessus does not support version checks against ' + report_phrase + '.\n' + 'To help us better identify vulnerable versions, please send the platform\n' + 'number along with details about the platform, including the operating system\n' + 'version, CPU architecture, and DB2 version to [email protected].\n'; exit(1, info); } if (vuln) { report_db2( severity : SECURITY_WARNING, port : port, platform_name : platform_name, installed_level : level, fixed_level : fixed_level); } else exit(0, "The IBM DB2 "+level+" on " + report_phrase + " install listening on port "+port+" is not affected.");

Oval

accepted

2012-01-30T04:00:48.168-05:00

class

vulnerability

contributors

name Scott Quint
organization DTCC
name Maria Kedovskaya
organization ALTX-SOFT

definition_extensions

comment	IBM DB2 UDB is installed
oval	oval:org.mitre.oval:def:12505

description

family

windows

oval:org.mitre.oval:def:14720

status

deprecated

submitted

2011-12-16T09:51:56.000-05:00

title

DEPRECATED: Unspecified vulnerability in IBM DB2 9.7 before FP5 on UNIX, when the Self Tuning Memory Manager (STMM) feature and the AUTOMATIC DATABASE_MEMORY setting are configured, allows local users to cause a denial of service (daemon crash) via unknown vectors.

version

Summary

Vulnerable Configurations

Nessus

Oval

References