CVE-2008-1707

Опубликовано: 09 апр. 2008

Источник: nvd

CVSS2: 4.3

EPSS Низкий

Описание

IBM solidDB 06.00.1018 and earlier allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a packet with an 0x11 value in a certain "type" field.

Ссылки

http://aluigi.altervista.org/adv/soliduro-adv.txt
http://aluigi.org/poc/soliduro.zip
Exploit
http://secunia.com/advisories/29512
http://securitytracker.com/id?1019721
http://www.securityfocus.com/archive/1/490129/100/0/threaded
http://www.securityfocus.com/bid/28468
http://www.vupen.com/english/advisories/2008/1038
https://exchange.xforce.ibmcloud.com/vulnerabilities/41487
http://aluigi.altervista.org/adv/soliduro-adv.txt
http://aluigi.org/poc/soliduro.zip
Exploit
http://secunia.com/advisories/29512
http://securitytracker.com/id?1019721
http://www.securityfocus.com/archive/1/490129/100/0/threaded
http://www.securityfocus.com/bid/28468
http://www.vupen.com/english/advisories/2008/1038
https://exchange.xforce.ibmcloud.com/vulnerabilities/41487

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:ibm:soliddb:*:*:*:*:*:*:*:*

Версия до 06.00.1018 (включая)

EPSS

Процентиль: 80%

0.01357

Низкий

4.3 Medium

CVSS2

Дефекты

CWE-399

Связанные уязвимости

GHSA-wr95-h8f6-c4gf

github

почти 4 года назад