Lucene search
K

123 matches found

CVE
CVE
added 2013/09/09 1:0 a.m.49 views

CVE-2013-3031

IBM solidDB stored procedure call handling vulnerability (CVE-2013-3031) affects the Universal Cache component. A SQL stored procedure call that includes named arguments and default parameter values but omits some expected arguments can be exploited by remote authenticated users to cause a denial...

3.5CVSS6.6AI score0.0118EPSS
Exploits0References6Affected Software1
Cvelist
Cvelist
added 2013/09/09 1:0 a.m.30 views

CVE-2013-3031

A SQL stored procedure in the Universal Cache component in IBM solidDB 6.0.x before 6.0.1070, 6.3.x before 6.3.0.56, 6.5.x before 6.5.0.12, and 7.0.x before 7.0.0.4 allows remote authenticated users to cause a denial of service uninitialized-memory access and daemon crash via a call that includes...

6.3AI score0.0118EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2013/05/08 12:0 a.m.13 views

IBM solidDB Stored Procedure Call Remote Denial of Service

The version of IBM solidDB installed on the remote host is 6.5.x prior to 6.5.0.12, 6.30.x prior to 6.30.0.55, 6.0.x prior to 6.0.0.1070, or 7.0.x prior to 7.0.0.4. It therefore is reportedly affected by a remote denial of service vulnerability that can be triggered by calling a stored procedure...

3.5CVSS5.6AI score0.0118EPSS
Exploits0References8
NVD
NVD
added 2012/06/20 10:27 a.m.18 views

CVE-2012-2173

The ODBC driver in IBM Security AppScan Source 7.x and 8.x before 8.6 sends an SHA-1 hash of the connection password during connections to a solidDB database, which allows remote attackers to obtain sensitive information by sniffing the network...

5CVSS6.1AI score0.01173EPSS
Exploits0References2
Prion
Prion
added 2012/06/20 10:27 a.m.12 views

Default credentials

The ODBC driver in IBM Security AppScan Source 7.x and 8.x before 8.6 sends an SHA-1 hash of the connection password during connections to a solidDB database, which allows remote attackers to obtain sensitive information by sniffing the network...

5CVSS6.6AI score0.01173EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2012/06/20 10:0 a.m.20 views

CVE-2012-2173

The ODBC driver in IBM Security AppScan Source 7.x and 8.x before 8.6 sends an SHA-1 hash of the connection password during connections to a solidDB database, which allows remote attackers to obtain sensitive information by sniffing the network...

6.1AI score0.01173EPSS
Exploits0References2
CVE
CVE
added 2012/06/20 10:0 a.m.47 views

CVE-2012-2173

The CVE concerns IBM Security AppScan Source’s ODBC driver for solidDB. "The ODBC driver in IBM Security AppScan Source 7.x and 8.x before 8.6" transmits an SHA-1 hash of the connection password during database connections, allowing remote attackers to sniff network traffic and obtain sensitive i...

5CVSS6.3AI score0.01173EPSS
Exploits0References2Affected Software1
Check Point Advisories
Check Point Advisories
added 2012/05/14 12:0 a.m.1 views

IBM solidDB ROWNUM Subquery Denial of Service

A denial of service vulnerability has been reported in IBM solidDB...

6.7AI score
Exploits0
Check Point Advisories
Check Point Advisories
added 2012/05/07 12:0 a.m.15 views

IBM solidDB Redundant WHERE Clause Denial Of Service (CVE-2012-0200)

A denial of service vulnerability has been reported in IBM solidDB. The vulnerability is due to a NULL pointer dereference while handling specially crafted SQL commands. A remote attacker could exploit this vulnerability by sending a specially crafted SQL command to the target server. Successful...

4CVSS6.7AI score0.05728EPSS
Exploits0
OpenVAS
OpenVAS
added 2012/03/01 12:0 a.m.2830 views

Database Open Access Information Disclosure Vulnerability

Various Database server might be prone to an information disclosure vulnerability if accessible to remote systems. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

6.9AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2012/02/23 12:0 a.m.29 views

IBM solidDB 6.5 < 6.5.0.8 Multiple Denial of Service Vulnerabilities

The remote database system is affected by multiple denial of service vulnerabilities : - Sending packets with many integer fields can trigger several recursive calls of a certain function causing an excessive amount of stack memory consumption. CVE-2010-4055, IC80074 - Upon receiving a packet...

5CVSS5.4AI score0.0843EPSS
Exploits3References4
Tenable Nessus
Tenable Nessus
added 2012/02/23 12:0 a.m.20 views

IBM solidDB 6.5 < 6.5.0.8 Interim Fix 6 Redundant WHERE Clause Select Statement Parsing Remote DoS

According to its version number, the solidDB install on the remote host is affected by a denial of service vulnerability due to a flaw in the way the application handles 'SELECT' statements containing a redundant WHERE condition. %NASLMINLEVEL 70300 C Tenable Network Security, Inc...

4CVSS5.5AI score0.05728EPSS
Exploits0References3
NVD
NVD
added 2012/02/21 1:31 p.m.17 views

CVE-2012-0200

The server in IBM solidDB 6.5 before Interim Fix 6 does not properly initialize data structures, which allows remote authenticated users to cause a denial of service daemon crash via a SELECT statement with a redundant WHERE condition...

4CVSS6AI score0.05728EPSS
Exploits0References3
NVD
NVD
added 2012/02/21 1:31 p.m.12 views

CVE-2011-4890

The server in IBM solidDB 6.5 before FP9 and 7.0 before FP1 allows remote authenticated users to cause a denial of service daemon crash via a SELECT statement with a ROWNUM condition involving a subquery...

4CVSS6.1AI score0.02116EPSS
Exploits0References8
Prion
Prion
added 2012/02/21 1:31 p.m.10 views

Design/Logic Flaw

The server in IBM solidDB 6.5 before FP9 and 7.0 before FP1 allows remote authenticated users to cause a denial of service daemon crash via a SELECT statement with a ROWNUM condition involving a subquery...

4CVSS6.6AI score0.02116EPSS
Exploits0References8Affected Software1
Prion
Prion
added 2012/02/21 1:31 p.m.17 views

Design/Logic Flaw

The server in IBM solidDB 6.5 before Interim Fix 6 does not properly initialize data structures, which allows remote authenticated users to cause a denial of service daemon crash via a SELECT statement with a redundant WHERE condition...

4CVSS6.5AI score0.05728EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2012/02/21 11:0 a.m.20 views

CVE-2012-0200

The server in IBM solidDB 6.5 before Interim Fix 6 does not properly initialize data structures, which allows remote authenticated users to cause a denial of service daemon crash via a SELECT statement with a redundant WHERE condition...

6AI score0.05728EPSS
Exploits0References3
Cvelist
Cvelist
added 2012/02/21 11:0 a.m.19 views

CVE-2011-4890

The server in IBM solidDB 6.5 before FP9 and 7.0 before FP1 allows remote authenticated users to cause a denial of service daemon crash via a SELECT statement with a ROWNUM condition involving a subquery...

6AI score0.02116EPSS
Exploits0References8
CVE
CVE
added 2012/02/21 11:0 a.m.39 views

CVE-2011-4890

IBM solidDB is affected on affected versions: 6.5 before FP9 and 7.0 before FP1. The issue is a denial-of-service condition where remote authenticated users can crash the daemon by sending a SELECT with a ROWNUM condition that uses a subquery. This is corroborated by multiple sources (OpenVAS/NAS...

4CVSS6.2AI score0.02116EPSS
Exploits0References8Affected Software1
CVE
CVE
added 2012/02/21 11:0 a.m.42 views

CVE-2012-0200

The CVE-2012-0200 entry affects IBM solidDB 6.5 prior to Interim Fix 6, where a flaw in handling SELECT statements with a redundant WHERE condition leads to a denial of service (daemon crash). Multiple connected sources corroborate a remote DoS vector tied to parsing/initialization issues (e.g., ...

4CVSS6.2AI score0.05728EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder