PT-2013-4105 · Ibm · Soliddb

Published

2013-09-09

Updated

2017-08-29

CVE-2013-3031

CVSS v2.0

3.5

Low

Vector

AV:N/AC:M/Au:S/C:N/I:N/A:P

Name of the Vulnerable Software and Affected Versions IBM solidDB versions 6.0.x through 6.0.1069 IBM solidDB versions 6.3.x through 6.3.0.55 IBM solidDB versions 6.5.x through 6.5.0.11 IBM solidDB versions 7.0.x through 7.0.0.3

Description A SQL stored procedure in the Universal Cache component allows remote authenticated users to cause a denial of service via a call that includes named arguments and default parameter values, but does not include all of the expected arguments. This can result in uninitialized-memory access and daemon crash.

Recommendations For IBM solidDB version 6.0.x, update to version 6.0.1070 or later. For IBM solidDB version 6.3.x, update to version 6.3.0.56 or later. For IBM solidDB version 6.5.x, update to version 6.5.0.12 or later. For IBM solidDB version 7.0.x, update to version 7.0.0.4 or later.

Fix

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119

Related Identifiers

CVE-2013-3031

Affected Products

Soliddb

PT-2013-4105 · Ibm · Soliddb

CVE-2013-3031

Weakness Enumeration

Related Identifiers

Affected Products

References · 7