CVE-2009-1905

CVE-2009-1905 · LOW Severity

AV:N/AC:H/AU:N/C:P/I:N/A:N

The Common Code Infrastructure component in IBM DB2 8 before FP17, 9.1 before FP7, and 9.5 before FP4, when LDAP security (aka IBMLDAPauthserver) and anonymous bind are enabled, allows remote attackers to bypass password authentication and establish a database connection via unspecified vectors.

Learn more about our Cis Benchmark Audit For Bind.