Lucene search
HistoryApr 05, 2011 - 3:19 p.m.
CVE-2011-1560
ibm
soliddb
cve-2011-1560
authentication bypass
password-hash
security vulnerability
nvd
6.8 Medium
AI Score
Confidence
Low
9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.013 Low
EPSS
Percentile
85.9%
solid.exe in IBM solidDB before 4.5.181, 6.0.x before 6.0.1067, 6.1.x and 6.3.x before 6.3.47, and 6.5.x before 6.5.0.3 uses a password-hash length specified by the client, which allows remote attackers to bypass authentication via a short length value.
Related
nessus
nessus
IBM solidDB Password Hash Length Authentication Bypass
2011-04-08 00:00:00
openvas
openvas
IBM solidDB User Authentication Bypass Vulnerability
2011-05-18 00:00:00
IBM solidDB User Authentication Bypass Vulnerability
2011-05-18 00:00:00
checkpoint_advisories
checkpoint_advisories
IBM solidDB solid.exe Authentication Bypass (CVE-2011-1560)
2011-05-16 00:00:00
prion
prion
Authentication flaw
2011-04-05 15:19:00
cvelist
cvelist
CVE-2011-1560
2011-04-05 15:00:00
6.8 Medium
AI Score
Confidence
Low
9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.013 Low
EPSS
Percentile
85.9%
Related for CVE-2011-1560