solid.exe in IBM solidDB 6.5.0.3 and previous versions does not properly perform a recursive call to a certain function upon receiving packet data containing a single integer field, which allows remote malicious users to cause a denial of service (NULL pointer dereference and daemon crash) via a TCP session on port 1315.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ibm soliddb 6.3.37 |
||
ibm soliddb 6.30.0039 |
||
ibm soliddb 6.5.0.0 |
||
ibm soliddb 6.1.20 |
||
ibm soliddb 6.0.1066 |
||
ibm soliddb |
||
ibm soliddb 6.5.0.2 |
||
ibm soliddb 6.5.0.1 |
||
ibm soliddb 4.5.169 |
||
ibm soliddb 4.5.168 |
||
ibm soliddb 6.0.1061 |
||
ibm soliddb 6.0.1060 |
||
ibm soliddb 6.30.0040 |
||
ibm soliddb 6.30.0044 |
||
ibm soliddb 4.5.175 |
||
ibm soliddb 4.5.173 |
||
ibm soliddb 6.0.1065 |
||
ibm soliddb 6.0.1064 |
||
ibm soliddb 6.1 |
||
ibm soliddb 6.3.33 |
||
ibm soliddb 4.5.167 |
||
ibm soliddb 06.30.0047 |
||
ibm soliddb 4.5.178 |
||
ibm soliddb 4.5.176 |