Published: 23/10/2010 Updated: 17/08/2017

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

VMScore: 505

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

solid.exe in IBM solidDB 6.5.0.3 and previous versions does not properly perform a recursive call to a certain function upon receiving packet data containing a single integer field, which allows remote malicious users to cause a denial of service (NULL pointer dereference and daemon crash) via a TCP session on port 1315.

Vulnerable Product	Search on Vulmon	Subscribe to Product
ibm soliddb 6.3.37
ibm soliddb 6.30.0039
ibm soliddb 6.5.0.0
ibm soliddb 6.1.20
ibm soliddb 6.0.1066
ibm soliddb
ibm soliddb 6.5.0.2
ibm soliddb 6.5.0.1
ibm soliddb 4.5.169
ibm soliddb 4.5.168
ibm soliddb 6.0.1061
ibm soliddb 6.0.1060
ibm soliddb 6.30.0040
ibm soliddb 6.30.0044
ibm soliddb 4.5.175
ibm soliddb 4.5.173
ibm soliddb 6.0.1065
ibm soliddb 6.0.1064
ibm soliddb 6.1
ibm soliddb 6.3.33
ibm soliddb 4.5.167
ibm soliddb 06.30.0047
ibm soliddb 4.5.178
ibm soliddb 4.5.176

Source: aluigiorg/adv/soliddb_1-advtxt ####################################################################### Luigi Auriemma Application: IBM solidDB www-01ibmcom/software/data/soliddb/ Versions: <= 6503 Platforms: AIX, Linux, Solaris, Windows Bug: Denial of Serv ...

NVD-CWE-Other http://secunia.com/advisories/41873 http://www.exploit-db.com/exploits/15261 http://www.vupen.com/english/advisories/2010/2715 http://aluigi.altervista.org/adv/soliddb_1-adv.txt http://securitytracker.com/id?1024597 https://exchange.xforce.ibmcloud.com/vulnerabilities/62590 https://nvd.nist.gov https://www.exploit-db.com/exploits/15261/

CVE-2010-4056

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect