PT-2012-1987 · Ibm · Soliddb
Publicado
2012-02-21
·
Atualizado
2017-08-29
·
CVE-2011-4890
CVSS v2.0
4.0
Média
| Vetor | AV:N/AC:L/Au:S/C:N/I:N/A:P |
Name of the Vulnerable Software and Affected Versions
IBM solidDB versions 6.5 before FP9
IBM solidDB versions 7.0 before FP1
Description
The issue allows remote authenticated users to cause a denial of service, resulting in a daemon crash. This can be achieved by executing a SELECT statement that includes a ROWNUM condition with a subquery.
Recommendations
For IBM solidDB version 6.5, apply FP9 to resolve the issue.
For IBM solidDB version 7.0, apply FP1 to resolve the issue.
Correção
RCE
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Soliddb