Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The (1) to_char and (2) to_date function in IBM DB2 8.1 allows local users to cause a denial of service (application crash) via an empty string in the second parameter, which causes a null pointer dereference.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
IBM DB2 to_char和to_date函数本地拒绝服务漏洞
Vulnerability Description
IBM DB2是美国IBM公司的一套关系型数据库管理系统。该系统的执行环境主要有UNIX、Linux、IBM i、z/OS以及Windows服务器版本。 IBM DB2在处理to_char和to_date函数调用时存在问题,本地攻击者可以利用这个漏洞对服务进行拒绝服务攻击。 如果to_char函数调用空字符串给第二个参数,DB2就会废弃一个NULL指针而停止: select to_char('aaa','') from sysibm.sysdummy1 如果to_date函数调用空字符串给第二个参数,DB
CVSS Information
N/A
Vulnerability Type
N/A