CVE-2011-1208

5 documents4 sources
Severity
7.8HIGH
EPSS
2.0%
top 16.48%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
IBM Soliddb
Timeline
PublishedMay 5
Latest updateMay 17

Description

IBM solidDB 4.5.x before 4.5.182, 6.0.x before 6.0.1069, 6.1.x and 6.3.x before 6.3 FP8 (aka 6.3.49), and 6.5.x before 6.5 FP4 (aka 6.5.0.4) does not properly handle the (1) rpc_test_svc_readwrite and (2) rpc_test_svc_done commands, which allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a crafted command.

CVSS vector

AV:N/AC:L/C:N/I:N/A:CExploitability: 10.0 | Impact: 6.9

Affected Packages1 packages

NVDibm/soliddb31 versions+30

🔴Vulnerability Details

2
GHSA
GHSA-246p-f5jm-57hh: IBM solidDB 42022-05-17
CVEList
CVE-2011-1208: IBM solidDB 42011-05-05

💥Exploits & PoCs

2
Exploit-DB
eSignal and eSignal Pro 10.6.2425.1208 - File Parsing Buffer Overflow in QUO (Metasploit)2011-09-20
Exploit-DB
eSignal and eSignal Pro 10.6.2425.1208 - Multiple Vulnerabilities2011-09-14
CVE-2011-1208 (HIGH CVSS 7.8) | IBM solidDB 4.5.x before 4.5.182 | cvebase.io