IBM SolidDB Packets Processing Denial Of Service Vulnerabilities Network Vulnerability

Summary

This host is running IBM solidDB and is prone to multiple Denial of Service vulnerabilities.

Impact

Successful exploitation will let the remote unauthenticated attackers to crash an affected process or consume CPU resources, creating a denial of service condition. Impact Level: Application

Solution

Apply the relevant updates. For more details refer, http://www-01.ibm.com/support/docview.wss?uid=swg27021052

Insight

Multiple flaws caused by input validation, stack exhaustion and NULL pointer dereference errors in 'solid.exe' when processing malformed packets sent to port 1315/TCP.

Affected

IBM solidDB version 6.5.0.3 and prior

References

http://aluigi.altervista.org/adv/soliddb_1-adv.txt
http://securitytracker.com/id?1024597
http://www.exploit-db.com/exploits/15261
http://www.vupen.com/english/advisories/2010/2715
http://xforce.iss.net/xforce/xfdb/62590

Updated on 2015-03-25

Severity

Classification

CVE CVE-2010-4055, CVE-2010-4056, CVE-2010-4057

CVSS	Base Score: 5.0 AV:N/AC:L/Au:N/C:N/I:N/A:P

Related Vulnerabilities

Eggdrop Server Module Message Handling Remote Buffer Overflow Vulnerability
CUPS 'scheduler/select.c' Denial Of Service Vulnerability
freeSSHd Pre-Authentication Error Remote DoS Vulnerability
chm2pdf Insecure Temporary File Creation or DoS Vulnerability
FreeType Memory Corruption and Buffer Overflow Vulnerabilities (Windows)

IBM solidDB Packets Processing Denial of Service Vulnerabilities

Take action and discover your vulnerabilities