123 matches found
CVE-2013-3031
IBM solidDB stored procedure call handling vulnerability (CVE-2013-3031) affects the Universal Cache component. A SQL stored procedure call that includes named arguments and default parameter values but omits some expected arguments can be exploited by remote authenticated users to cause a denial...
CVE-2013-3031
A SQL stored procedure in the Universal Cache component in IBM solidDB 6.0.x before 6.0.1070, 6.3.x before 6.3.0.56, 6.5.x before 6.5.0.12, and 7.0.x before 7.0.0.4 allows remote authenticated users to cause a denial of service uninitialized-memory access and daemon crash via a call that includes...
IBM solidDB Stored Procedure Call Remote Denial of Service
The version of IBM solidDB installed on the remote host is 6.5.x prior to 6.5.0.12, 6.30.x prior to 6.30.0.55, 6.0.x prior to 6.0.0.1070, or 7.0.x prior to 7.0.0.4. It therefore is reportedly affected by a remote denial of service vulnerability that can be triggered by calling a stored procedure...
CVE-2012-2173
The ODBC driver in IBM Security AppScan Source 7.x and 8.x before 8.6 sends an SHA-1 hash of the connection password during connections to a solidDB database, which allows remote attackers to obtain sensitive information by sniffing the network...
Default credentials
The ODBC driver in IBM Security AppScan Source 7.x and 8.x before 8.6 sends an SHA-1 hash of the connection password during connections to a solidDB database, which allows remote attackers to obtain sensitive information by sniffing the network...
CVE-2012-2173
The ODBC driver in IBM Security AppScan Source 7.x and 8.x before 8.6 sends an SHA-1 hash of the connection password during connections to a solidDB database, which allows remote attackers to obtain sensitive information by sniffing the network...
CVE-2012-2173
The CVE concerns IBM Security AppScan Source’s ODBC driver for solidDB. "The ODBC driver in IBM Security AppScan Source 7.x and 8.x before 8.6" transmits an SHA-1 hash of the connection password during database connections, allowing remote attackers to sniff network traffic and obtain sensitive i...
IBM solidDB ROWNUM Subquery Denial of Service
A denial of service vulnerability has been reported in IBM solidDB...
IBM solidDB Redundant WHERE Clause Denial Of Service (CVE-2012-0200)
A denial of service vulnerability has been reported in IBM solidDB. The vulnerability is due to a NULL pointer dereference while handling specially crafted SQL commands. A remote attacker could exploit this vulnerability by sending a specially crafted SQL command to the target server. Successful...
Database Open Access Information Disclosure Vulnerability
Various Database server might be prone to an information disclosure vulnerability if accessible to remote systems. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...
IBM solidDB 6.5 < 6.5.0.8 Multiple Denial of Service Vulnerabilities
The remote database system is affected by multiple denial of service vulnerabilities : - Sending packets with many integer fields can trigger several recursive calls of a certain function causing an excessive amount of stack memory consumption. CVE-2010-4055, IC80074 - Upon receiving a packet...
IBM solidDB 6.5 < 6.5.0.8 Interim Fix 6 Redundant WHERE Clause Select Statement Parsing Remote DoS
According to its version number, the solidDB install on the remote host is affected by a denial of service vulnerability due to a flaw in the way the application handles 'SELECT' statements containing a redundant WHERE condition. %NASLMINLEVEL 70300 C Tenable Network Security, Inc...
CVE-2012-0200
The server in IBM solidDB 6.5 before Interim Fix 6 does not properly initialize data structures, which allows remote authenticated users to cause a denial of service daemon crash via a SELECT statement with a redundant WHERE condition...
CVE-2011-4890
The server in IBM solidDB 6.5 before FP9 and 7.0 before FP1 allows remote authenticated users to cause a denial of service daemon crash via a SELECT statement with a ROWNUM condition involving a subquery...
Design/Logic Flaw
The server in IBM solidDB 6.5 before FP9 and 7.0 before FP1 allows remote authenticated users to cause a denial of service daemon crash via a SELECT statement with a ROWNUM condition involving a subquery...
Design/Logic Flaw
The server in IBM solidDB 6.5 before Interim Fix 6 does not properly initialize data structures, which allows remote authenticated users to cause a denial of service daemon crash via a SELECT statement with a redundant WHERE condition...
CVE-2012-0200
The server in IBM solidDB 6.5 before Interim Fix 6 does not properly initialize data structures, which allows remote authenticated users to cause a denial of service daemon crash via a SELECT statement with a redundant WHERE condition...
CVE-2011-4890
The server in IBM solidDB 6.5 before FP9 and 7.0 before FP1 allows remote authenticated users to cause a denial of service daemon crash via a SELECT statement with a ROWNUM condition involving a subquery...
CVE-2011-4890
IBM solidDB is affected on affected versions: 6.5 before FP9 and 7.0 before FP1. The issue is a denial-of-service condition where remote authenticated users can crash the daemon by sending a SELECT with a ROWNUM condition that uses a subquery. This is corroborated by multiple sources (OpenVAS/NAS...
CVE-2012-0200
The CVE-2012-0200 entry affects IBM solidDB 6.5 prior to Interim Fix 6, where a flaw in handling SELECT statements with a redundant WHERE condition leads to a denial of service (daemon crash). Multiple connected sources corroborate a remote DoS vector tied to parsing/initialization issues (e.g., ...