Vulnerabilities > IBM > Soliddb > 6.3.41
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2013-09-09 | CVE-2013-3031 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in IBM Soliddb A SQL stored procedure in the Universal Cache component in IBM solidDB 6.0.x before 6.0.1070, 6.3.x before 6.3.0.56, 6.5.x before 6.5.0.12, and 7.0.x before 7.0.0.4 allows remote authenticated users to cause a denial of service (uninitialized-memory access and daemon crash) via a call that includes named arguments and default parameter values, but does not include all of the expected arguments. | 3.5 |
2012-02-21 | CVE-2012-0200 | Unspecified vulnerability in IBM Soliddb The server in IBM solidDB 6.5 before Interim Fix 6 does not properly initialize data structures, which allows remote authenticated users to cause a denial of service (daemon crash) via a SELECT statement with a redundant WHERE condition. | 4.0 |
2012-02-21 | CVE-2011-4890 | Improper Input Validation vulnerability in IBM Soliddb The server in IBM solidDB 6.5 before FP9 and 7.0 before FP1 allows remote authenticated users to cause a denial of service (daemon crash) via a SELECT statement with a ROWNUM condition involving a subquery. | 4.0 |
2010-10-23 | CVE-2010-4057 | Numeric Errors vulnerability in IBM Soliddb solid.exe in IBM solidDB 6.5.0.3 and earlier does not properly perform a recursive call to a certain function upon receiving packet data containing many integer fields with two different values, which allows remote attackers to cause a denial of service (invalid memory access and daemon crash) via a TCP session on port 1315. | 5.0 |
2010-10-23 | CVE-2010-4056 | Denial-Of-Service vulnerability in solidDB solid.exe in IBM solidDB 6.5.0.3 and earlier does not properly perform a recursive call to a certain function upon receiving packet data containing a single integer field, which allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a TCP session on port 1315. | 5.0 |
2010-10-23 | CVE-2010-4055 | Resource Management Errors vulnerability in IBM Soliddb Stack consumption vulnerability in solid.exe in IBM solidDB 6.5.0.3 and earlier allows remote attackers to cause a denial of service (memory consumption and daemon crash) by connecting to TCP port 1315 and sending a packet with many integer fields, which trigger many recursive calls of a certain function. | 5.0 |
2010-07-22 | CVE-2010-2771 | Code Injection vulnerability in IBM Soliddb solid.exe in IBM solidDB before 6.5 FP2 allows remote attackers to execute arbitrary code via a long username field in the first handshake packet. | 10.0 |