PT-2017-6852 · Teradata · Td Express+1
Publicado
2017-05-23
·
Atualizado
2017-06-06
·
CVE-2015-5401
CVSS v2.0
5.0
Média
| Vetor | AV:N/AC:L/Au:N/C:N/I:N/A:P |
Name of the Vulnerable Software and Affected Versions
Teradata Gateway versions prior to 15.00.03.02-1
Teradata Gateway versions 15.10.x prior to 15.10.00.01-1
TD Express versions prior to 15.00.02.08 Sles10
TD Express versions prior to 15.00.02.08 Sles11
Description
The issue allows remote attackers to cause a denial of service, resulting in a database crash. This can be achieved by sending a malformed CONFIG REQUEST message.
Recommendations
For Teradata Gateway versions prior to 15.00.03.02-1, update to version 15.00.03.02-1 or later.
For Teradata Gateway versions 15.10.x prior to 15.10.00.01-1, update to version 15.10.00.01-1 or later.
For TD Express versions prior to 15.00.02.08 Sles10, update to version 15.00.02.08 Sles10 or later.
For TD Express versions prior to 15.00.02.08 Sles11, update to version 15.00.02.08 Sles11 or later.
Exploit
Correção
RCE
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Td Express
Teradata Gateway