Summary
This host is running IBM solidDB and is prone to multiple denial of service vulnerabilities.
Impact
Successful exploitation will let remote unauthenticated attackers to crash an affected process or consume CPU resources, creating a denial of service condition.
Impact Level: Application
Solution
Apply the patches from below link,
https://www-304.ibm.com/support/docview.wss?uid=swg21496106
Insight
The flaws are caused by a NULL pointer error in the solidDB component when processing the 'rpc_test_svc_readwrite' and 'rpc_test_svc_done commands' commands sent to port 2315/TCP.
Affected
IBM solidDB 4.5.x before 4.5.182, 6.0.x before 6.0.1069, 6.1.x, 6.3.x before 6.3 FP8, and 6.5.x before 6.5 FP4
References
Severity
Classification
-
CVE CVE-2011-1208 -
CVSS Base Score: 7.8
AV:N/AC:L/Au:N/C:N/I:N/A:C
Related Vulnerabilities
- Google Chrome Multiple Denial of Service Vulnerabilities - January12 (Mac OS X)
- Azeotech DAQFactory NETB Datagram Parsing Stack Buffer Overflow Vulnerability
- Adobe Flash Player/Air Multiple Vulnerabilities - August10 (Win)
- Asterisk SIP Channel Driver Denial Of Service Vulnerability (Linux)
- Adobe Reader '.ETD File' Denial of Service Vulnerability (Windows)