PT-2010-4285 · Ibm · Soliddb

Abdulaziz Hariri

+1

·

Published

2010-07-22

·

Updated

2010-07-22

·

CVE-2010-2771

CVSS v2.0

10

High

VectorAV:N/AC:L/Au:N/C:C/I:C/A:C
Name of the Vulnerable Software and Affected Versions IBM solidDB versions prior to 6.5 FP2
Description The issue allows remote attackers to execute arbitrary code via a long username field in the first handshake packet.
Recommendations For versions prior to 6.5 FP2, update to version 6.5 FP2 or later to resolve the issue.

Fix

Code Injection

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-94

Related Identifiers

CVE-2010-2771

Affected Products

Soliddb