Denial of Service in IBM solidDB by Remote Attackers
CVE-2008-1707

Currently unrated

Key Information:

Vendor: IBM
Status: Soliddb
Vendor: CVE Published:; 9 April 2008

Summary

IBM solidDB versions 06.00.1018 and earlier are susceptible to a denial of service vulnerability that can be exploited by remote attackers. By sending a specially crafted packet containing a value of 0x11 in a specific 'type' field, an attacker can trigger a NULL pointer dereference, leading to a crash of the daemon and rendering the service unavailable. This vulnerability underscores the need for rigorous security measures and prompt updates to mitigate potential threats.

References

http://aluigi.org/poc/soliduro.zip

x_refsource_MISC

http://secunia.com/advisories/29512

third-party-advisoryx_refsource_SECUNIA

http://securitytracker.com/id?1019721

vdb-entryx_refsource_SECTRACK

Timeline

Vulnerability published
Apr 9, 2008
Vulnerability Reserved
Apr 9, 2008