Published: 21/02/2012 Updated: 29/08/2017

CVSS v2 Base Score: 4 | Impact Score: 2.9 | Exploitability Score: 8

VMScore: 405

Vector: AV:N/AC:L/Au:S/C:N/I:N/A:P

The server in IBM solidDB 6.5 before Interim Fix 6 does not properly initialize data structures, which allows remote authenticated users to cause a denial of service (daemon crash) via a SELECT statement with a redundant WHERE condition.

Vulnerable Product	Search on Vulmon	Subscribe to Product
ibm soliddb 6.5.0.6
ibm soliddb 6.5.0.7
ibm soliddb 6.5.0.4
ibm soliddb 6.5.0.5
ibm soliddb 6.5.0.2
ibm soliddb 6.5.0.3
ibm soliddb 6.5.0.0
ibm soliddb 6.5.0.1
ibm soliddb

source: wwwsecurityfocuscom/bid/52111/info IBM solidDB is prone to a denial-of-service vulnerability Attackers can exploit this issue to crash the affected application, denying service to legitimate users IBM solidDB versions prior to 6508 Interim Fix 6 are vulnerable SELECT * FROM a WHERE (b >0) AND (b IN (1,2)) ...

NVD-CWE-noinfo http://www.ibm.com/support/docview.wss?uid=swg27021052 http://www-01.ibm.com/support/docview.wss?uid=swg1IC81244 https://exchange.xforce.ibmcloud.com/vulnerabilities/73126 https://nvd.nist.gov https://www.exploit-db.com/exploits/36869/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2012-0200

Vulnerability Summary

Vulnerability Trend

Exploits

References

Vulmon Search

About

Products

Connect