Lucene search

MitreCVE-2008-1706

HistoryApr 09, 2008 - 7:05 p.m.

CVE-2008-1706

2008-04-0919:05:00

CWE-189

mitre

web.nvd.nist.gov

ibm

soliddb

cve-2008-1706

array index

denial of service

daemon crash

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

AI Score

6.5

Confidence

High

EPSS

0.022

Percentile

89.4%

JSON

Uncontrolled array index in IBM solidDB 06.00.1018 and earlier allows remote attackers to cause a denial of service (daemon crash) via a large value in a certain 32-bit field.

Affected configurations

Nvd

Node

ibmsoliddbMatch06.00.1018

VendorProductVersionCPE
ibmsoliddb06.00.1018cpe:2.3:a:ibm:soliddb:06.00.1018:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
ibm	soliddb	06.00.1018	cpe:2.3:a:ibm:soliddb:06.00.1018:::::::*

References

aluigi.altervista.org/adv/soliduro-adv.txt

aluigi.org/poc/soliduro.zip

secunia.com/advisories/29512

securitytracker.com/id?1019721

www.securityfocus.com/archive/1/490129/100/0/threaded

www.securityfocus.com/bid/28468

www.vupen.com/english/advisories/2008/1038

exchange.xforce.ibmcloud.com/vulnerabilities/41486

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

AI Score

6.5

Confidence

High

EPSS

0.022

Percentile

89.4%

JSON

Related for CVE-2008-1706