Denial of Service Vulnerability in IBM solidDB Server
CVE-2011-4890

Currently unrated

Key Information:

Vendor: IBM
Status: Soliddb
Vendor: CVE Published:; 21 February 2012

Summary

IBM solidDB versions 6.5 before FP9 and 7.0 before FP1 are susceptible to a denial of service attack. Remote authenticated users can exploit this vulnerability by executing a SELECT statement with a ROWNUM condition that includes a subquery, potentially causing the server daemon to crash. This issue could disrupt service availability for users reliant on the database system.

References

http://www-01.ibm.com/support/docview.wss?uid=swg1IC79861

vendor-advisoryx_refsource_AIXAPAR

http://www.ibm.com/support/docview.wss?uid=swg27021052

x_refsource_CONFIRM

http://www-01.ibm.com/support/docview.wss?uid=swg27021052...

x_refsource_CONFIRM

Timeline

Vulnerability published
Feb 21, 2012
Vulnerability Reserved
Dec 22, 2011