CVE-2015-5401

Опубликовано: 23 мая 2017

Источник: nvd

CVSS3: 7.5

CVSS2: 5

EPSS Низкий

Описание

Teradata Gateway before 15.00.03.02-1 and 15.10.x before 15.10.00.01-1 and TD Express before 15.00.02.08_Sles10 and 15.00.02.08_Sles11 allow remote attackers to cause a denial of service (database crash) via a malformed CONFIG REQUEST message.

Ссылки

http://www.fortiguard.com/advisory/FG-VD-15-038/
Broken Link
http://www.securitytracker.com/id/1033005
Third Party Advisory
VDB Entry
https://blog.fortinet.com/2015/07/23/teradata-vulnerability-announced-big-potential-headaches-for-big-data-solution
Exploit
Third Party Advisory
http://www.fortiguard.com/advisory/FG-VD-15-038/
Broken Link
http://www.securitytracker.com/id/1033005
Third Party Advisory
VDB Entry
https://blog.fortinet.com/2015/07/23/teradata-vulnerability-announced-big-potential-headaches-for-big-data-solution
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:teradata:teradata_express:15.00.00:*:*:*:*:*:*:*

cpe:2.3:a:teradata:teradata_express:15.10.00:*:*:*:*:*:*:*

cpe:2.3:a:teradata:teradata_gateway:*:*:*:*:*:*:*:*

Версия до 15.00.02.08 (включая)

EPSS

Процентиль: 79%

0.0126

Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-20

Связанные уязвимости

GHSA-3r4j-ff67-68cw