123 matches found
CVE-2011-1560
solid.exe in IBM solidDB before 4.5.181, 6.0.x before 6.0.1067, 6.1.x and 6.3.x before 6.3.47, and 6.5.x before 6.5.0.3 uses a password-hash length specified by the client, which allows remote attackers to bypass authentication via a short length value...
CVE-2011-1560
IBM solidDB is affected by an authentication bypass when solid.exe (and related 4.5.181, 6.0.x <6.0.1067, 6.1.x, 6.3.x <6.3.47, and 6.5.x
IBM solidDB authentication bypass
solid.exe TCP/1315, TCP/1964, TCP/2315 authentication bypass...
ZDI-11-115: IBM solidDB solid.exe Authentication Bypass Remote Code Execution Vulnerability
ZDI-11-115: IBM solidDB solid.exe Authentication Bypass Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-11-115 April 1, 2011 -- CVSS: 9.3, AV:N/AC:M/Au:N/C:C/I:C/A:C -- Affected Vendors: IBM -- Affected Products: IBM solidDB -- TippingPointTM IPS Customer...
IBM solidDB solid.exe Authentication Bypass Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of IBM solidDB. Authentication is not required to exploit this vulnerability. The specific flaw exists within the solid.exe process which listens by default on TCP ports 1315, 1964 and 2315. The...
CVE-2010-4057
solid.exe in IBM solidDB 6.5.0.3 and earlier does not properly perform a recursive call to a certain function upon receiving packet data containing many integer fields with two different values, which allows remote attackers to cause a denial of service invalid memory access and daemon crash via ...
CVE-2010-4055
Stack consumption vulnerability in solid.exe in IBM solidDB 6.5.0.3 and earlier allows remote attackers to cause a denial of service memory consumption and daemon crash by connecting to TCP port 1315 and sending a packet with many integer fields, which trigger many recursive calls of a certain...
CVE-2010-4056
solid.exe in IBM solidDB 6.5.0.3 and earlier does not properly perform a recursive call to a certain function upon receiving packet data containing a single integer field, which allows remote attackers to cause a denial of service NULL pointer dereference and daemon crash via a TCP session on por...
Null pointer dereference
solid.exe in IBM solidDB 6.5.0.3 and earlier does not properly perform a recursive call to a certain function upon receiving packet data containing a single integer field, which allows remote attackers to cause a denial of service NULL pointer dereference and daemon crash via a TCP session on por...
Design/Logic Flaw
solid.exe in IBM solidDB 6.5.0.3 and earlier does not properly perform a recursive call to a certain function upon receiving packet data containing many integer fields with two different values, which allows remote attackers to cause a denial of service invalid memory access and daemon crash via ...
Design/Logic Flaw
Stack consumption vulnerability in solid.exe in IBM solidDB 6.5.0.3 and earlier allows remote attackers to cause a denial of service memory consumption and daemon crash by connecting to TCP port 1315 and sending a packet with many integer fields, which trigger many recursive calls of a certain...
CVE-2010-4056
solid.exe in IBM solidDB 6.5.0.3 and earlier does not properly perform a recursive call to a certain function upon receiving packet data containing a single integer field, which allows remote attackers to cause a denial of service NULL pointer dereference and daemon crash via a TCP session on por...
CVE-2010-4057
IBM solidDB 6.5.0.3 and earlier are affected by CVE-2010-4057, where receiving a TCP packet with many integer fields containing two different values triggers a recursive call leading to invalid memory access and a daemon crash (DoS) on port 1315. Affected versions include 6.5.0.3 and earlier; rem...
CVE-2010-4056
IBM solidDB 6.5.0.3 and earlier are affected by CVE-2010-4056. The issue occurs when processing a TCP packet on port 1315 containing a single integer field, causing a NULL pointer dereference and daemon crash (remote denial of service). Multiple vulnerability feeds (NVD, OpenVAS, Nessus, etc.) co...
CVE-2010-4055
IBM solidDB vulnerability CVE-2010-4055 affects solidDB 6.5.0.3 and earlier. The issue arises from processing a TCP packet sent to port 1315 that contains many integer fields, which triggers many recursive calls and leads to excessive stack/memory consumption and a daemon crash (DoS). Connected N...
CVE-2010-4055
Stack consumption vulnerability in solid.exe in IBM solidDB 6.5.0.3 and earlier allows remote attackers to cause a denial of service memory consumption and daemon crash by connecting to TCP port 1315 and sending a packet with many integer fields, which trigger many recursive calls of a certain...
IBM solidDB Multiple Denial of Service Vulnerabilities
IBM solidDB is prone to multiple denial-of-service vulnerabilities. Attackers can exploit these issues to crash the affected application, denying service to legitimate users. solidDB 6.5.0.3 is vulnerable; other versions may also be affected. OpenVAS Vulnerability Test $Id: gbibmsoliddb44158.nasl...
IBM solidDB Multiple Denial of Service Vulnerabilities
IBM solidDB is prone to multiple denial of service DoS vulnerabilities. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only if description...
IBM solidDB 6.5.0.3 - Denial of Service
IBM solidDB 6.5.0.3 - Denial of Service Source: http://aluigi.org/adv/soliddb1-adv.txt Luigi Auriemma Application: IBM solidDB http://www-01.ibm.com/software/data/soliddb/ Versions: = 6.5.0.3 Platforms: AIX, Linux, Solaris, Windows Bug: Denial of Service Exploitation: remote, versus server Date: ...
IBM solidDB 6.5.0.3 - Denial of Service
Source: http://aluigi.org/adv/soliddb1-adv.txt Luigi Auriemma Application: IBM solidDB http://www-01.ibm.com/software/data/soliddb/ Versions: = 6.5.0.3 Platforms: AIX, Linux, Solaris, Windows Bug: Denial of Service Exploitation: remote, versus server Date: 15 Oct 2010 Author: Luigi Auriemma e-mai...