Advisory Details

April 26th, 2011

IBM solidDB solid.exe rpc_test_svc Commands Multiple DoS Vulnerabilities

ZDI-11-142
ZDI-CAN-1000

CVE ID CVE-2011-1208
CVSS SCORE 7.8, (AV:N/AC:L/Au:N/C:N/I:N/A:C)
AFFECTED VENDORS IBM
AFFECTED PRODUCTS solidDB
TREND MICRO CUSTOMER PROTECTION Trend Micro TippingPoint IPS customers are protected against this vulnerability by Digital Vaccine protection filter ID 11137. For further product information on the TippingPoint IPS: http://www.tippingpoint.com
VULNERABILITY DETAILS

This vulnerability allows remote attackers to create a denial of service condition on vulnerable installations of IBM SolidDB. Authentication is not required to exploit this vulnerability.

The specific flaw exists within the handling of the rpc_test_svc_readwrite and rpc_test_svc_done commands. By issuing these commands remotely to TCP port 2315, an attacker can cause the solidDB.exe process to dereference a NULL pointer and subsequently crash.

ADDITIONAL DETAILS IBM has issued an update to correct this vulnerability. More details can be found at:
https://www-304.ibm.com/support/docview.wss?uid=swg21496106
DISCLOSURE TIMELINE
  • 2010-11-07 - Vulnerability reported to vendor
  • 2011-04-26 - Coordinated public release of advisory
CREDIT Tenable Network Security
BACK TO ADVISORIES