Remote Code Execution Vulnerability in IBM solidDB
CVE-2010-2771

Currently unrated

Key Information:

Vendor: IBM
Status: Soliddb
Vendor: CVE Published:; 22 July 2010

Summary

An identified security flaw in IBM solidDB prior to version 6.5 FP2 allows remote attackers to execute arbitrary code. The vulnerability arises from a long username input in the initial handshake packet, enabling attackers to potentially gain control of affected systems. Proper validation and sanitation of input data are essential to mitigate this risk and protect against such attacks.

References

http://www.securityfocus.com/bid/41653

vdb-entryx_refsource_BID

http://www.zerodayinitiative.com/advisories/ZDI-10-125/

x_refsource_MISC

http://publib.boulder.ibm.com/infocenter/soliddb/v6r5/ind...

x_refsource_MISC

EPSS Score

8% chance of being exploited in the next 30 days.

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Jul 22, 2010