Lucene search
K
IbmSoliddb

13 matches found

CVE
CVE
added 2010/10/22 10:0 p.m.53 views

CVE-2010-4055

IBM solidDB vulnerability CVE-2010-4055 affects solidDB 6.5.0.3 and earlier. The issue arises from processing a TCP packet sent to port 1315 that contains many integer fields, which triggers many recursive calls and leads to excessive stack/memory consumption and a daemon crash (DoS). Connected N...

5CVSS6.5AI score0.07175EPSS
CVE
CVE
added 2013/09/09 1:0 a.m.49 views

CVE-2013-3031

IBM solidDB stored procedure call handling vulnerability (CVE-2013-3031) affects the Universal Cache component. A SQL stored procedure call that includes named arguments and default parameter values but omits some expected arguments can be exploited by remote authenticated users to cause a denial...

3.5CVSS6.6AI score0.0118EPSS
CVE
CVE
added 2010/10/22 10:0 p.m.47 views

CVE-2010-4056

IBM solidDB 6.5.0.3 and earlier are affected by CVE-2010-4056. The issue occurs when processing a TCP packet on port 1315 containing a single integer field, causing a NULL pointer dereference and daemon crash (remote denial of service). Multiple vulnerability feeds (NVD, OpenVAS, Nessus, etc.) co...

5CVSS6.5AI score0.0843EPSS
CVE
CVE
added 2010/10/22 10:0 p.m.46 views

CVE-2010-4057

IBM solidDB 6.5.0.3 and earlier are affected by CVE-2010-4057, where receiving a TCP packet with many integer fields containing two different values triggers a recursive call leading to invalid memory access and a daemon crash (DoS) on port 1315. Affected versions include 6.5.0.3 and earlier; rem...

5CVSS6.5AI score0.07175EPSS
CVE
CVE
added 2010/07/22 1:0 a.m.45 views

CVE-2010-2771

IBM SolidDB 'solid.exe' handshake vulnerability (CVE-2010-2771) affects SolidDB versions prior to 6.5 FP2 and allows remote code execution via a long username field in the first handshake packet. Multiple sources confirm a remote code execution impact, with OpenVAS citing SYSTEM-level privileges ...

10CVSS7.7AI score0.05435EPSS
CVE
CVE
added 2011/05/05 1:0 a.m.44 views

CVE-2011-1208

The CVE-2011-1208 entry concerns IBM SolidDB. Affected versions include solidDB 4.5.x prior to 4.5.182, 6.0.x prior to 6.0.1069, 6.1.x, 6.3.x prior to 6.3 FP8 (6.3.49), and 6.5.x prior to 6.5 FP4 (6.5.0.4). The issue is a denial-of-service condition caused by improper handling of the rpc_test_svc...

7.8CVSS6.5AI score0.0326EPSS
CVE
CVE
added 2011/04/05 3:0 p.m.44 views

CVE-2011-1560

IBM solidDB is affected by an authentication bypass when solid.exe (and related 4.5.181, 6.0.x <6.0.1067, 6.1.x, 6.3.x <6.3.47, and 6.5.x

9.3CVSS6.8AI score0.03992EPSS
CVE
CVE
added 2008/04/09 7:0 p.m.42 views

CVE-2008-1705

CVE-2008-1705 affects IBM solidDB and its logging function. The vulnerability is a format string issue in the server’s log entry creation, allowing an unauthenticated remote attacker to craft input that is interpreted as format specifiers, enabling arbitrary code execution in the context of the l...

6.8CVSS7.7AI score0.03224EPSS
CVE
CVE
added 2012/02/21 11:0 a.m.42 views

CVE-2012-0200

The CVE-2012-0200 entry affects IBM solidDB 6.5 prior to Interim Fix 6, where a flaw in handling SELECT statements with a redundant WHERE condition leads to a denial of service (daemon crash). Multiple connected sources corroborate a remote DoS vector tied to parsing/initialization issues (e.g., ...

4CVSS6.2AI score0.05728EPSS
CVE
CVE
added 2012/02/21 11:0 a.m.39 views

CVE-2011-4890

IBM solidDB is affected on affected versions: 6.5 before FP9 and 7.0 before FP1. The issue is a denial-of-service condition where remote authenticated users can crash the daemon by sending a SELECT with a ROWNUM condition that uses a subquery. This is corroborated by multiple sources (OpenVAS/NAS...

4CVSS6.2AI score0.02116EPSS
CVE
CVE
added 2008/04/09 7:0 p.m.38 views

CVE-2008-1706

CVE-2008-1706 affects IBM solidDB (versions 06.00.1018 and earlier). The issue is an uncontrolled array index in a 32-bit field that can be triggered by a large value, allowing remote attackers to cause a daemon crash (DoS). The connected documents provide the vulnerability description and affect...

4.3CVSS6.5AI score0.01555EPSS
CVE
CVE
added 2008/04/09 7:0 p.m.38 views

CVE-2008-1708

IBM solidDB 06.00.1018 and earlier are affected: a memory-allocation field is not validated, enabling a remote attacker to cause a denial-of-service (daemon exit) by sending a packet with a large value. No remediation details are provided in the supplied documents. Monitor for updates and potenti...

4.3CVSS6.5AI score0.01555EPSS
CVE
CVE
added 2008/04/09 7:0 p.m.35 views

CVE-2008-1707

IBM solidDB 06.00.1018 and earlier is affected by CVE-2008-1707. A remote attacker can trigger a denial of service through a crafted packet where the type field has value 0x11, causing a NULL pointer dereference and daemon crash. The available sources identify the affected product and the crash c...

4.3CVSS6.5AI score0.02317EPSS