CVE-2006-3067

Name: CVE-2006-3067
Creator: NVD / NIST
Published: 2006-06-19T10:02:00+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

UnknownEPSS 2.44%

Last modified Jun 16, 2026

CVE-2006-3067 is a vulnerability of currently unknown severity. Multiple unspecified vulnerabilities in IBM DB2 Universal Database (UDB) before 8.1 FixPak 12 allow remote attackers to cause a denial of service (application crash) via a (1) "long column list" in the (a) REPLACE INTO and (b) INSERT INTO portions of the LOAD command or a (2) large number of values in an IN clause, possibly related to a buffer overflow.. EPSS estimates a 2.44% chance of exploitation in the next 30 days.

Description

Multiple unspecified vulnerabilities in IBM DB2 Universal Database (UDB) before 8.1 FixPak 12 allow remote attackers to cause a denial of service (application crash) via a (1) "long column list" in the (a) REPLACE INTO and (b) INSERT INTO portions of the LOAD command or a (2) large number of values in an IN clause, possibly related to a buffer overflow.

Metrics

EPSS Probability

2.44%

82.3th percentile

Probability of exploitation in the next 30 days. Learn more

Affected Software

Vendor	Product	Versions	Update
Ibm	Db2 Universal Database	<= 8.1	—
Ibm	Db2 Universal Database	8.0	Fp9
Ibm	Db2 Universal Database	8.1	—

References

Timeline

Published: Jun 19, 2006
Last Modified: Jun 16, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2006-3067?

How severe is CVE-2006-3067?

Severity scoring for CVE-2006-3067 is pending analysis. The EPSS model estimates a 2.44% probability of exploitation in the next 30 days.

How do I fix CVE-2006-3067?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2006-3067?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST