Vulnerability Description
The XSLT library in IBM DB2 and DB2 Connect 9.5 through 10.5, and the DB2 pureScale Feature 9.8 for Enterprise Server Edition, allows remote authenticated users to cause a denial of service via unspecified vectors.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ibm | Db2 | 9.5 |
| Ibm | Db2 Connect | 9.5 |
| Ibm | Db2 Purescale Feature 9.8 | - |
References
- http://www-01.ibm.com/support/docview.wss?uid=swg1IC97402
- http://www-01.ibm.com/support/docview.wss?uid=swg1IC97470
- http://www-01.ibm.com/support/docview.wss?uid=swg1IC97471
- http://www-01.ibm.com/support/docview.wss?uid=swg1IC97472
- http://www-01.ibm.com/support/docview.wss?uid=swg1IC97763
- http://www-01.ibm.com/support/docview.wss?uid=swg21660046Vendor Advisory
- http://www.securityfocus.com/bid/64334
- https://exchange.xforce.ibmcloud.com/vulnerabilities/88365
- http://www-01.ibm.com/support/docview.wss?uid=swg1IC97402
- http://www-01.ibm.com/support/docview.wss?uid=swg1IC97470
- http://www-01.ibm.com/support/docview.wss?uid=swg1IC97471
- http://www-01.ibm.com/support/docview.wss?uid=swg1IC97472
- http://www-01.ibm.com/support/docview.wss?uid=swg1IC97763
- http://www-01.ibm.com/support/docview.wss?uid=swg21660046Vendor Advisory
- http://www.securityfocus.com/bid/64334
FAQ
What is CVE-2013-5466?
CVE-2013-5466 is a vulnerability with a CVSS score of 4.0 (MEDIUM). The XSLT library in IBM DB2 and DB2 Connect 9.5 through 10.5, and the DB2 pureScale Feature 9.8 for Enterprise Server Edition, allows remote authenticated users to cause a denial of service via unspec...
How severe is CVE-2013-5466?
CVE-2013-5466 has been rated MEDIUM with a CVSS base score of 4.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2013-5466?
Check the references section above for vendor advisories and patch information. Affected products include: Ibm Db2, Ibm Db2 Connect, Ibm Db2 Purescale Feature 9.8.