Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 05/04/2011 Updated: 17/08/2017

CVSS v2 Base Score: 9.3 | Impact Score: 10 | Exploitability Score: 8.6

VMScore: 828

Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

solid.exe in IBM solidDB prior to 4.5.181, 6.0.x prior to 6.0.1067, 6.1.x and 6.3.x prior to 6.3.47, and 6.5.x prior to 6.5.0.3 uses a password-hash length specified by the client, which allows remote malicious users to bypass authentication via a short length value.

Vulnerable Product	Search on Vulmon	Subscribe to Product
ibm soliddb 4.5.169
ibm soliddb 4.5.173
ibm soliddb 4.5.167
ibm soliddb 4.5.168
ibm soliddb 4.5.175
ibm soliddb 4.5.178
ibm soliddb 4.5.176
ibm soliddb 4.5.179
ibm soliddb
ibm soliddb 6.0.1065
ibm soliddb 6.0.1064
ibm soliddb 6.30.0040
ibm soliddb 6.30.0044
ibm soliddb 6.0.1066
ibm soliddb 6.1.18
ibm soliddb 6.3.38
ibm soliddb 6.5.0.1
ibm soliddb 6.5.0.2
ibm soliddb 6.0.1061
ibm soliddb 6.0.1060
ibm soliddb 6.3.33
ibm soliddb 6.3.37
ibm soliddb 6.1
ibm soliddb 6.1.20
ibm soliddb 6.30.0039
ibm soliddb 6.5.0.0

CWE-255 http://www.ibm.com/support/docview.wss?uid=swg21474552 http://www.vupen.com/english/advisories/2011/0854 http://osvdb.org/71494 http://secunia.com/advisories/44030 http://www.zerodayinitiative.com/advisories/ZDI-11-115/https://exchange.xforce.ibmcloud.com/vulnerabilities/66455 https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2011-1560

Vulnerability Summary

References

Vulmon Search

About

Products

Connect