Vulnerabilities > CVE-2008-1706 - Numeric Errors vulnerability in IBM Soliddb 06.00.1018

CVSS 4.3 - MEDIUM

Attack vector

NETWORK

Attack complexity

MEDIUM

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

PARTIAL

network

ibm

CWE-189

NVD

Published: 2008-04-09

Updated: 2018-10-11

Summary

Uncontrolled array index in IBM solidDB 06.00.1018 and earlier allows remote attackers to cause a denial of service (daemon crash) via a large value in a certain 32-bit field.

Vulnerable Configurations

Part	Description	Count
Application	Ibm IBM Soliddb 06.00.1018	1

Common Weakness Enumeration (CWE)

CWE-189 - Numeric Errors

References

http://aluigi.altervista.org/adv/soliduro-adv.txt
http://aluigi.org/poc/soliduro.zip
http://secunia.com/advisories/29512
http://securitytracker.com/id?1019721
http://www.securityfocus.com/archive/1/490129/100/0/threaded
http://www.securityfocus.com/bid/28468
http://www.vupen.com/english/advisories/2008/1038
https://exchange.xforce.ibmcloud.com/vulnerabilities/41486