14 matches found
IBM solidDB <= 6.5.0.3 - Denial of Service Vulnerability
No description provided by source. Source: http://aluigi.org/adv/soliddb1-adv.txt Luigi Auriemma Application: IBM solidDB http://www-01.ibm.com/software/data/soliddb/ Versions: = 6.5.0.3 Platforms: AIX, Linux, Solaris, Windows Bug: Denial of Service Exploitation: remote, versus server Date: 15 Oc...
IBM solidDB Packets Processing Denial of Service Vulnerabilities
This host is running IBM solidDB and is prone to multiple Denial of Service vulnerabilities. OpenVAS Vulnerability Test $Id: gbibmsoliddbdosvuln.nasl 7029 2017-08-31 11:51:40Z teissa $ IBM solidDB Packets Processing Denial of Service Vulnerabilities Authors: Antu Sanadi Copyright: Copyright c 201...
IBM solidDB Packets Processing Denial of Service Vulnerabilities
IBM solidDB is prone to multiple Denial of Service vulnerabilities. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:ibm:soliddb";...
CVE-2010-4055
Stack consumption vulnerability in solid.exe in IBM solidDB 6.5.0.3 and earlier allows remote attackers to cause a denial of service memory consumption and daemon crash by connecting to TCP port 1315 and sending a packet with many integer fields, which trigger many recursive calls of a certain...
CVE-2010-4056
solid.exe in IBM solidDB 6.5.0.3 and earlier does not properly perform a recursive call to a certain function upon receiving packet data containing a single integer field, which allows remote attackers to cause a denial of service NULL pointer dereference and daemon crash via a TCP session on por...
CVE-2010-4057
solid.exe in IBM solidDB 6.5.0.3 and earlier does not properly perform a recursive call to a certain function upon receiving packet data containing many integer fields with two different values, which allows remote attackers to cause a denial of service invalid memory access and daemon crash via ...
Design/Logic Flaw
Stack consumption vulnerability in solid.exe in IBM solidDB 6.5.0.3 and earlier allows remote attackers to cause a denial of service memory consumption and daemon crash by connecting to TCP port 1315 and sending a packet with many integer fields, which trigger many recursive calls of a certain...
CVE-2010-4057
IBM solidDB 6.5.0.3 and earlier are affected by CVE-2010-4057, where receiving a TCP packet with many integer fields containing two different values triggers a recursive call leading to invalid memory access and a daemon crash (DoS) on port 1315. Affected versions include 6.5.0.3 and earlier; rem...
CVE-2010-4056
solid.exe in IBM solidDB 6.5.0.3 and earlier does not properly perform a recursive call to a certain function upon receiving packet data containing a single integer field, which allows remote attackers to cause a denial of service NULL pointer dereference and daemon crash via a TCP session on por...
CVE-2010-4056
IBM solidDB 6.5.0.3 and earlier are affected by CVE-2010-4056. The issue occurs when processing a TCP packet on port 1315 containing a single integer field, causing a NULL pointer dereference and daemon crash (remote denial of service). Multiple vulnerability feeds (NVD, OpenVAS, Nessus, etc.) co...
CVE-2010-4055
Stack consumption vulnerability in solid.exe in IBM solidDB 6.5.0.3 and earlier allows remote attackers to cause a denial of service memory consumption and daemon crash by connecting to TCP port 1315 and sending a packet with many integer fields, which trigger many recursive calls of a certain...
IBM solidDB 6.5.0.3 - Denial of Service
IBM solidDB 6.5.0.3 - Denial of Service Source: http://aluigi.org/adv/soliddb1-adv.txt Luigi Auriemma Application: IBM solidDB http://www-01.ibm.com/software/data/soliddb/ Versions: = 6.5.0.3 Platforms: AIX, Linux, Solaris, Windows Bug: Denial of Service Exploitation: remote, versus server Date: ...
ZDI-10-125: IBM SolidDB solid.exe Handshake Request Username Field Remote Code Execution Vulnerability
ZDI-10-125: IBM SolidDB solid.exe Handshake Request Username Field Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-10-125 July 13, 2010 -- CVSS: 10, AV:N/AC:L/Au:N/C:C/I:C/A:C -- Affected Vendors: IBM -- Affected Products: IBM solidDB -- TippingPointTM IPS...
IBM SolidDB solid.exe Handshake Request Username Field Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of IBM solidDB. Authentication is not required to exploit this vulnerability. The specific flaw exists within the solid.exe process which listens by default on TCP port 1315. The code responsible for...