Description: Vivek Rathod has reported a vulnerability in DB2, which can be exploited by malicious people to cause a DoS (Denial of Service).
The vulnerability is caused due to a NULL pointer dereference error within "sqle_db2ra_as_recvrequest" and can be exploited to crash the DB2 instance via a specially crafted SQLJRA packet.
Do you have this product installed on your home computer? Scan using the free Personal Software Inspector. Check if a vulnerable version is installed on computers in your corporate network, scan using the Network Software Inspector.
Solution: Update to version 8.1 FixPak 14 (8.2 FixPak 7).
Provided and/or discovered by: Vivek Rathod, Application Security Inc.
If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com.
Ideas, suggestions, and other feedback are most welcome.