CVE-2008-1706 — MEDIUM (4.3)

Vulnerability Description

Uncontrolled array index in IBM solidDB 06.00.1018 and earlier allows remote attackers to cause a denial of service (daemon crash) via a large value in a certain 32-bit field.

CVSS Score

4.3

MEDIUM

AV:N/AC:M/Au:N/C:N/I:N/A:P

Confidentiality

NONE

Integrity

NONE

Availability

PARTIAL

Affected Products

Vendor	Product	Versions
Ibm	Soliddb	06.00.1018

Related Weaknesses (CWE)

CWE-189

References

http://aluigi.altervista.org/adv/soliduro-adv.txt
http://aluigi.org/poc/soliduro.zipExploit
http://secunia.com/advisories/29512
http://securitytracker.com/id?1019721
http://www.securityfocus.com/archive/1/490129/100/0/threaded
http://www.securityfocus.com/bid/28468
http://www.vupen.com/english/advisories/2008/1038
https://exchange.xforce.ibmcloud.com/vulnerabilities/41486
http://aluigi.altervista.org/adv/soliduro-adv.txt
http://aluigi.org/poc/soliduro.zipExploit
http://secunia.com/advisories/29512
http://securitytracker.com/id?1019721
http://www.securityfocus.com/archive/1/490129/100/0/threaded
http://www.securityfocus.com/bid/28468
http://www.vupen.com/english/advisories/2008/1038

FAQ

What is CVE-2008-1706?

CVE-2008-1706 is a vulnerability with a CVSS score of 4.3 (MEDIUM). Uncontrolled array index in IBM solidDB 06.00.1018 and earlier allows remote attackers to cause a denial of service (daemon crash) via a large value in a certain 32-bit field.

How severe is CVE-2008-1706?

CVE-2008-1706 has been rated MEDIUM with a CVSS base score of 4.3/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2008-1706?

Check the references section above for vendor advisories and patch information. Affected products include: Ibm Soliddb.