Lucene search
K

123 matches found

Cvelist
Cvelist
added 2011/04/05 3:0 p.m.20 views

CVE-2011-1560

solid.exe in IBM solidDB before 4.5.181, 6.0.x before 6.0.1067, 6.1.x and 6.3.x before 6.3.47, and 6.5.x before 6.5.0.3 uses a password-hash length specified by the client, which allows remote attackers to bypass authentication via a short length value...

6.5AI score0.03992EPSS
Exploits0References6
CVE
CVE
added 2011/04/05 3:0 p.m.44 views

CVE-2011-1560

IBM solidDB is affected by an authentication bypass when solid.exe (and related 4.5.181, 6.0.x <6.0.1067, 6.1.x, 6.3.x <6.3.47, and 6.5.x

9.3CVSS6.8AI score0.03992EPSS
Exploits0References6Affected Software1
securityvulns
securityvulns
added 2011/04/05 12:0 a.m.26 views

IBM solidDB authentication bypass

solid.exe TCP/1315, TCP/1964, TCP/2315 authentication bypass...

3.2AI score
Exploits0References1
securityvulns
securityvulns
added 2011/04/05 12:0 a.m.119 views

ZDI-11-115: IBM solidDB solid.exe Authentication Bypass Remote Code Execution Vulnerability

ZDI-11-115: IBM solidDB solid.exe Authentication Bypass Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-11-115 April 1, 2011 -- CVSS: 9.3, AV:N/AC:M/Au:N/C:C/I:C/A:C -- Affected Vendors: IBM -- Affected Products: IBM solidDB -- TippingPointTM IPS Customer...

0.6AI score
Exploits0
Zero Day Initiative
Zero Day Initiative
added 2011/04/01 12:0 a.m.28 views

IBM solidDB solid.exe Authentication Bypass Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of IBM solidDB. Authentication is not required to exploit this vulnerability. The specific flaw exists within the solid.exe process which listens by default on TCP ports 1315, 1964 and 2315. The...

9.3CVSS7.9AI score
Exploits0References1
NVD
NVD
added 2010/10/23 8:39 p.m.13 views

CVE-2010-4057

solid.exe in IBM solidDB 6.5.0.3 and earlier does not properly perform a recursive call to a certain function upon receiving packet data containing many integer fields with two different values, which allows remote attackers to cause a denial of service invalid memory access and daemon crash via ...

5CVSS6.4AI score0.07175EPSS
Exploits1References6
NVD
NVD
added 2010/10/23 8:39 p.m.19 views

CVE-2010-4055

Stack consumption vulnerability in solid.exe in IBM solidDB 6.5.0.3 and earlier allows remote attackers to cause a denial of service memory consumption and daemon crash by connecting to TCP port 1315 and sending a packet with many integer fields, which trigger many recursive calls of a certain...

5CVSS6.4AI score0.07175EPSS
Exploits1References6
NVD
NVD
added 2010/10/23 8:39 p.m.19 views

CVE-2010-4056

solid.exe in IBM solidDB 6.5.0.3 and earlier does not properly perform a recursive call to a certain function upon receiving packet data containing a single integer field, which allows remote attackers to cause a denial of service NULL pointer dereference and daemon crash via a TCP session on por...

5CVSS6.4AI score0.0843EPSS
Exploits1References6
Prion
Prion
added 2010/10/23 8:39 p.m.15 views

Null pointer dereference

solid.exe in IBM solidDB 6.5.0.3 and earlier does not properly perform a recursive call to a certain function upon receiving packet data containing a single integer field, which allows remote attackers to cause a denial of service NULL pointer dereference and daemon crash via a TCP session on por...

5CVSS6.9AI score0.0843EPSS
Exploits1References6Affected Software1
Prion
Prion
added 2010/10/23 8:39 p.m.14 views

Design/Logic Flaw

solid.exe in IBM solidDB 6.5.0.3 and earlier does not properly perform a recursive call to a certain function upon receiving packet data containing many integer fields with two different values, which allows remote attackers to cause a denial of service invalid memory access and daemon crash via ...

5CVSS6.9AI score0.07175EPSS
Exploits1References6Affected Software1
Prion
Prion
added 2010/10/23 8:39 p.m.17 views

Design/Logic Flaw

Stack consumption vulnerability in solid.exe in IBM solidDB 6.5.0.3 and earlier allows remote attackers to cause a denial of service memory consumption and daemon crash by connecting to TCP port 1315 and sending a packet with many integer fields, which trigger many recursive calls of a certain...

5CVSS6.9AI score0.07175EPSS
Exploits1References6Affected Software1
Cvelist
Cvelist
added 2010/10/22 10:0 p.m.27 views

CVE-2010-4056

solid.exe in IBM solidDB 6.5.0.3 and earlier does not properly perform a recursive call to a certain function upon receiving packet data containing a single integer field, which allows remote attackers to cause a denial of service NULL pointer dereference and daemon crash via a TCP session on por...

6.3AI score0.0843EPSS
Exploits1References6
CVE
CVE
added 2010/10/22 10:0 p.m.46 views

CVE-2010-4057

IBM solidDB 6.5.0.3 and earlier are affected by CVE-2010-4057, where receiving a TCP packet with many integer fields containing two different values triggers a recursive call leading to invalid memory access and a daemon crash (DoS) on port 1315. Affected versions include 6.5.0.3 and earlier; rem...

5CVSS6.5AI score0.07175EPSS
Exploits1References6Affected Software1
CVE
CVE
added 2010/10/22 10:0 p.m.47 views

CVE-2010-4056

IBM solidDB 6.5.0.3 and earlier are affected by CVE-2010-4056. The issue occurs when processing a TCP packet on port 1315 containing a single integer field, causing a NULL pointer dereference and daemon crash (remote denial of service). Multiple vulnerability feeds (NVD, OpenVAS, Nessus, etc.) co...

5CVSS6.5AI score0.0843EPSS
Exploits1References6Affected Software1
CVE
CVE
added 2010/10/22 10:0 p.m.53 views

CVE-2010-4055

IBM solidDB vulnerability CVE-2010-4055 affects solidDB 6.5.0.3 and earlier. The issue arises from processing a TCP packet sent to port 1315 that contains many integer fields, which triggers many recursive calls and leads to excessive stack/memory consumption and a daemon crash (DoS). Connected N...

5CVSS6.5AI score0.07175EPSS
Exploits1References6Affected Software1
Cvelist
Cvelist
added 2010/10/22 10:0 p.m.26 views

CVE-2010-4055

Stack consumption vulnerability in solid.exe in IBM solidDB 6.5.0.3 and earlier allows remote attackers to cause a denial of service memory consumption and daemon crash by connecting to TCP port 1315 and sending a packet with many integer fields, which trigger many recursive calls of a certain...

6.3AI score0.07175EPSS
Exploits1References6
OpenVAS
OpenVAS
added 2010/10/19 12:0 a.m.19 views

IBM solidDB Multiple Denial of Service Vulnerabilities

IBM solidDB is prone to multiple denial-of-service vulnerabilities. Attackers can exploit these issues to crash the affected application, denying service to legitimate users. solidDB 6.5.0.3 is vulnerable; other versions may also be affected. OpenVAS Vulnerability Test $Id: gbibmsoliddb44158.nasl...

5CVSS0.7AI score0.0843EPSS
Exploits3References3
OpenVAS
OpenVAS
added 2010/10/19 12:0 a.m.21 views

IBM solidDB Multiple Denial of Service Vulnerabilities

IBM solidDB is prone to multiple denial of service DoS vulnerabilities. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only if description...

5CVSS6.3AI score0.0843EPSS
Exploits3References2
exploitpack
exploitpack
added 2010/10/15 12:0 a.m.23 views

IBM solidDB 6.5.0.3 - Denial of Service

IBM solidDB 6.5.0.3 - Denial of Service Source: http://aluigi.org/adv/soliddb1-adv.txt Luigi Auriemma Application: IBM solidDB http://www-01.ibm.com/software/data/soliddb/ Versions: = 6.5.0.3 Platforms: AIX, Linux, Solaris, Windows Bug: Denial of Service Exploitation: remote, versus server Date: ...

7.3AI score
Exploits0
Exploit DB
Exploit DB
added 2010/10/15 12:0 a.m.29 views

IBM solidDB 6.5.0.3 - Denial of Service

Source: http://aluigi.org/adv/soliddb1-adv.txt Luigi Auriemma Application: IBM solidDB http://www-01.ibm.com/software/data/soliddb/ Versions: = 6.5.0.3 Platforms: AIX, Linux, Solaris, Windows Bug: Denial of Service Exploitation: remote, versus server Date: 15 Oct 2010 Author: Luigi Auriemma e-mai...

7AI score
Exploits0
Rows per page
Query Builder