Denial of service vulnerability in IBM solidDB via a crafted SELECT statement involving a subquery (Linux)ID: oval:org.secpod.oval:def:4375 | Date: (C)2012-03-02 (M)2021-09-11 |
Class: VULNERABILITY | Family: unix |
The host is installed with IBM solidDB 6.5 before Interim Fix 5 or 7.0 before FP1 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to handle a SELECT statement with a ROWNUM condition involving a subquery. Successful exploitation could allow attackers to crash the service.