The host is installed with IBM DB2 UDB 9.5 before FP6a and is prone to security vulnerability. A flaw is present in install component in IBM DB2 which enforces an unintended limit on password length. Successful exploitation allow remote attackers to obtain access via a brute-force attack.