) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.
Search Results (Refine Search)
- Results Type: Overview
- Keyword (text search): cpe:2.3:a:ibm:soliddb:6.3.44:*:*:*:*:*:*:*
- CPE Name Search: true
| Vuln ID | Summary | CVSS Severity |
|---|---|---|
| CVE-2013-3031 |
A SQL stored procedure in the Universal Cache component in IBM solidDB 6.0.x before 6.0.1070, 6.3.x before 6.3.0.56, 6.5.x before 6.5.0.12, and 7.0.x before 7.0.0.4 allows remote authenticated users to cause a denial of service (uninitialized-memory access and daemon crash) via a call that includes named arguments and default parameter values, but does not include all of the expected arguments. Published: September 08, 2013; 9:55:06 PM -0400 |
V3.x:(not available) V2.0: 3.5 LOW |
| CVE-2012-0200 |
The server in IBM solidDB 6.5 before Interim Fix 6 does not properly initialize data structures, which allows remote authenticated users to cause a denial of service (daemon crash) via a SELECT statement with a redundant WHERE condition. Published: February 21, 2012; 8:31:56 AM -0500 |
V3.x:(not available) V2.0: 4.0 MEDIUM |
| CVE-2011-4890 |
The server in IBM solidDB 6.5 before FP9 and 7.0 before FP1 allows remote authenticated users to cause a denial of service (daemon crash) via a SELECT statement with a ROWNUM condition involving a subquery. Published: February 21, 2012; 8:31:56 AM -0500 |
V3.x:(not available) V2.0: 4.0 MEDIUM |
| CVE-2011-1208 |
IBM solidDB 4.5.x before 4.5.182, 6.0.x before 6.0.1069, 6.1.x and 6.3.x before 6.3 FP8 (aka 6.3.49), and 6.5.x before 6.5 FP4 (aka 6.5.0.4) does not properly handle the (1) rpc_test_svc_readwrite and (2) rpc_test_svc_done commands, which allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a crafted command. Published: May 04, 2011; 10:39:46 PM -0400 |
V3.x:(not available) V2.0: 7.8 HIGH |
| CVE-2010-4057 |
solid.exe in IBM solidDB 6.5.0.3 and earlier does not properly perform a recursive call to a certain function upon receiving packet data containing many integer fields with two different values, which allows remote attackers to cause a denial of service (invalid memory access and daemon crash) via a TCP session on port 1315. Published: October 23, 2010; 4:39:05 PM -0400 |
V3.x:(not available) V2.0: 5.0 MEDIUM |
| CVE-2010-4056 |
solid.exe in IBM solidDB 6.5.0.3 and earlier does not properly perform a recursive call to a certain function upon receiving packet data containing a single integer field, which allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a TCP session on port 1315. Published: October 23, 2010; 4:39:05 PM -0400 |
V3.x:(not available) V2.0: 5.0 MEDIUM |
| CVE-2010-4055 |
Stack consumption vulnerability in solid.exe in IBM solidDB 6.5.0.3 and earlier allows remote attackers to cause a denial of service (memory consumption and daemon crash) by connecting to TCP port 1315 and sending a packet with many integer fields, which trigger many recursive calls of a certain function. Published: October 23, 2010; 4:39:05 PM -0400 |
V3.x:(not available) V2.0: 5.0 MEDIUM |
| CVE-2010-2771 |
solid.exe in IBM solidDB before 6.5 FP2 allows remote attackers to execute arbitrary code via a long username field in the first handshake packet. Published: July 22, 2010; 1:43:58 AM -0400 |
V3.x:(not available) V2.0: 10.0 HIGH |