Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2011-1208

IBM solidDB 4.5.x before 4.5.182, 6.0.x before 6.0.1069, 6.1.x and 6.3.x before 6.3 FP8 (aka 6.3.49), and 6.5.x before 6.5 FP4 (aka 6.5.0.4) does not properly handle the (1) rpc_test_svc_readwrite and (2) rpc_test_svc_done commands, which allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a crafted command.

Published

2011-05-05T02:39:46.090

Last Modified

2025-04-11T00:51:21.963

Status

Deferred

Source

[email protected]

Severity

CVSSv2: 7.8 (HIGH)

CVSSv2 Vector

AV:N/AC:L/Au:N/C:N/I:N/A:C

Access Vector: NETWORK
Access Complexity: LOW
Authentication: NONE
Confidentiality Impact: NONE
Integrity Impact: NONE
Availability Impact: COMPLETE

Exploitability Score

10.0

Impact Score

6.9

Weaknesses

Type: Primary
NVD-CWE-Other

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	ibm	soliddb	4.5.167	Yes
Application	ibm	soliddb	4.5.168	Yes
Application	ibm	soliddb	4.5.169	Yes
Application	ibm	soliddb	4.5.173	Yes
Application	ibm	soliddb	4.5.175	Yes
Application	ibm	soliddb	4.5.176	Yes
Application	ibm	soliddb	4.5.178	Yes
Application	ibm	soliddb	4.5.179	Yes
Application	ibm	soliddb	4.5.180	Yes
Application	ibm	soliddb	4.5.181	Yes
Application	ibm	soliddb	6.0.1060	Yes
Application	ibm	soliddb	6.0.1061	Yes
Application	ibm	soliddb	6.0.1064	Yes
Application	ibm	soliddb	6.0.1065	Yes
Application	ibm	soliddb	6.0.1066	Yes
Application	ibm	soliddb	6.0.1067	Yes
Application	ibm	soliddb	6.0.1068	Yes
Application	ibm	soliddb	6.1.18	Yes
Application	ibm	soliddb	6.1.20	Yes
Application	ibm	soliddb	6.3.33	Yes
Application	ibm	soliddb	6.3.37	Yes
Application	ibm	soliddb	6.3.38	Yes
Application	ibm	soliddb	6.3.39	Yes
Application	ibm	soliddb	6.3.40	Yes
Application	ibm	soliddb	6.3.44	Yes
Application	ibm	soliddb	6.3.47	Yes
Application	ibm	soliddb	6.3.48	Yes
Application	ibm	soliddb	6.5.0.0	Yes
Application	ibm	soliddb	6.5.0.1	Yes
Application	ibm	soliddb	6.5.0.2	Yes
Application	ibm	soliddb	6.5.0.3	Yes

References

http://secunia.com/advisories/44380 Vendor Advisory ([email protected])
http://securitytracker.com/id?1025451 ([email protected])
http://www.ibm.com/support/docview.wss?uid=swg21496106 ([email protected])
http://www.securityfocus.com/bid/47584 ([email protected])
http://www.vupen.com/english/advisories/2011/1117 Vendor Advisory ([email protected])
http://www.zerodayinitiative.com/advisories/ZDI-11-142/ ([email protected])
https://exchange.xforce.ibmcloud.com/vulnerabilities/67019 ([email protected])
http://secunia.com/advisories/44380 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://securitytracker.com/id?1025451 (af854a3a-2127-422b-91ae-364da2661108)
http://www.ibm.com/support/docview.wss?uid=swg21496106 (af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/47584 (af854a3a-2127-422b-91ae-364da2661108)
http://www.vupen.com/english/advisories/2011/1117 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://www.zerodayinitiative.com/advisories/ZDI-11-142/ (af854a3a-2127-422b-91ae-364da2661108)
https://exchange.xforce.ibmcloud.com/vulnerabilities/67019 (af854a3a-2127-422b-91ae-364da2661108)