Denial of Service Vulnerability in IBM solidDB Affects Multiple Versions
CVE-2011-1208

Currently unrated

Key Information:

Vendor: IBM
Status: Soliddb
Vendor: CVE Published:; 5 May 2011

Summary

IBM solidDB versions 4.5.x, 6.0.x, 6.1.x, 6.3.x, and 6.5.x before specified patches are prone to a Denial of Service condition. Specifically, the vulnerability is triggered when handling 'rpc_test_svc_readwrite' and 'rpc_test_svc_done' commands, leading to a NULL pointer dereference that can cause the daemon to crash. This flaw allows remote attackers to exploit the service, resulting in potential disruption of service.

References

http://securitytracker.com/id?1025451

vdb-entryx_refsource_SECTRACK

http://www.zerodayinitiative.com/advisories/ZDI-11-142/

x_refsource_MISC

http://secunia.com/advisories/44380

third-party-advisoryx_refsource_SECUNIA

Timeline

Vulnerability published
May 5, 2011
Vulnerability Reserved
Mar 3, 2011