CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
AI Score
Confidence
Low
EPSS
Percentile
90.2%
solid.exe in IBM solidDB 6.5.0.3 and earlier does not properly perform a recursive call to a certain function upon receiving packet data containing many integer fields with two different values, which allows remote attackers to cause a denial of service (invalid memory access and daemon crash) via a TCP session on port 1315.
Vendor | Product | Version | CPE |
---|---|---|---|
ibm | soliddb | * | cpe:2.3:a:ibm:soliddb:*:*:*:*:*:*:*:* |
ibm | soliddb | 4.5.167 | cpe:2.3:a:ibm:soliddb:4.5.167:*:*:*:*:*:*:* |
ibm | soliddb | 4.5.168 | cpe:2.3:a:ibm:soliddb:4.5.168:*:*:*:*:*:*:* |
ibm | soliddb | 4.5.169 | cpe:2.3:a:ibm:soliddb:4.5.169:*:*:*:*:*:*:* |
ibm | soliddb | 4.5.173 | cpe:2.3:a:ibm:soliddb:4.5.173:*:*:*:*:*:*:* |
ibm | soliddb | 4.5.175 | cpe:2.3:a:ibm:soliddb:4.5.175:*:*:*:*:*:*:* |
ibm | soliddb | 4.5.176 | cpe:2.3:a:ibm:soliddb:4.5.176:*:*:*:*:*:*:* |
ibm | soliddb | 4.5.178 | cpe:2.3:a:ibm:soliddb:4.5.178:*:*:*:*:*:*:* |
ibm | soliddb | 6.0.1060 | cpe:2.3:a:ibm:soliddb:6.0.1060:*:*:*:*:*:*:* |
ibm | soliddb | 6.0.1061 | cpe:2.3:a:ibm:soliddb:6.0.1061:*:*:*:*:*:*:* |