CVE-2013-3031

A SQL stored procedure in the Universal Cache component in IBM solidDB 6.0.x before 6.0.1070, 6.3.x before 6.3.0.56, 6.5.x before 6.5.0.12, and 7.0.x before 7.0.0.4 allows remote authenticated users to cause a denial of service (uninitialized-memory access and daemon crash) via a call that includes named arguments and default parameter values, but does not include all of the expected arguments.

CVSS v2.0 3.5 LOW

3.5^/10

CVSS v2.0 : LOW

V2 Legend

Vector : AV:N/AC:M/Au:S/C:N/I:N/A:P

Exploitability : 6.8 / Impact : 2.9

Access Vector NETWORK

Access Complexity MEDIUM

Authentication SINGLE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact PARTIAL

References

Link	Resource
http://www-01.ibm.com/support/docview.wss?uid=swg1IC88796	Vendor Advisory
http://www-01.ibm.com/support/docview.wss?uid=swg1IC88797
http://www-01.ibm.com/support/docview.wss?uid=swg1IC94043	Vendor Advisory
http://www-01.ibm.com/support/docview.wss?uid=swg1IC94044	Vendor Advisory
http://www-01.ibm.com/support/docview.wss?uid=swg21643599	Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/84593
http://www-01.ibm.com/support/docview.wss?uid=swg1IC88796	Vendor Advisory
http://www-01.ibm.com/support/docview.wss?uid=swg1IC88797
http://www-01.ibm.com/support/docview.wss?uid=swg1IC94043	Vendor Advisory
http://www-01.ibm.com/support/docview.wss?uid=swg1IC94044	Vendor Advisory
http://www-01.ibm.com/support/docview.wss?uid=swg21643599	Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/84593

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:ibm:soliddb:6.0:::::::*
	cpe:2.3:a:ibm:soliddb:6.0.1060:::::::*
	cpe:2.3:a:ibm:soliddb:6.0.1061:::::::*
	cpe:2.3:a:ibm:soliddb:6.0.1064:::::::*
	cpe:2.3:a:ibm:soliddb:6.0.1065:::::::*
	cpe:2.3:a:ibm:soliddb:6.0.1066:::::::*
	cpe:2.3:a:ibm:soliddb:6.0.1067:::::::*
	cpe:2.3:a:ibm:soliddb:6.0.1068:::::::*
	cpe:2.3:a:ibm:soliddb:6.0.1069:::::::*
	cpe:2.3:a:ibm:soliddb:6.3.33:::::::*
	cpe:2.3:a:ibm:soliddb:6.3.34:::::::*
	cpe:2.3:a:ibm:soliddb:6.3.37:::::::*
	cpe:2.3:a:ibm:soliddb:6.3.38:::::::*
	cpe:2.3:a:ibm:soliddb:6.3.39:::::::*
	cpe:2.3:a:ibm:soliddb:6.3.40:::::::*
	cpe:2.3:a:ibm:soliddb:6.3.41:::::::*
	cpe:2.3:a:ibm:soliddb:6.3.42:::::::*
	cpe:2.3:a:ibm:soliddb:6.3.44:::::::*
	cpe:2.3:a:ibm:soliddb:6.3.47:::::::*
	cpe:2.3:a:ibm:soliddb:6.3.48:::::::*
	cpe:2.3:a:ibm:soliddb:6.3.49:::::::*
	cpe:2.3:a:ibm:soliddb:6.3.52:::::::*
	cpe:2.3:a:ibm:soliddb:6.3.53:::::::*
	cpe:2.3:a:ibm:soliddb:6.3.54:::::::*
	cpe:2.3:a:ibm:soliddb:6.3.55:::::::*
	cpe:2.3:a:ibm:soliddb:6.5.0.0:::::::*
	cpe:2.3:a:ibm:soliddb:6.5.0.1:::::::*
	cpe:2.3:a:ibm:soliddb:6.5.0.2:::::::*
	cpe:2.3:a:ibm:soliddb:6.5.0.3:::::::*
	cpe:2.3:a:ibm:soliddb:6.5.0.4:::::::*
	cpe:2.3:a:ibm:soliddb:6.5.0.5:::::::*
	cpe:2.3:a:ibm:soliddb:6.5.0.6:::::::*
	cpe:2.3:a:ibm:soliddb:6.5.0.7:::::::*
	cpe:2.3:a:ibm:soliddb:6.5.0.8:::::::*
	cpe:2.3:a:ibm:soliddb:6.5.09:::::::*
	cpe:2.3:a:ibm:soliddb:6.5.10:::::::*
	cpe:2.3:a:ibm:soliddb:6.5.11:::::::*
	cpe:2.3:a:ibm:soliddb:7.0.0.0:::::::*
	cpe:2.3:a:ibm:soliddb:7.0.0.1:::::::*
	cpe:2.3:a:ibm:soliddb:7.0.0.2:::::::*
	cpe:2.3:a:ibm:soliddb:7.0.0.3:::::::*

History

21 Nov 2024, 01:52

Type	Values Removed	Values Added
References	~~() http://www-01.ibm.com/support/docview.wss?uid=swg1IC88796 - Vendor Advisory~~	() http://www-01.ibm.com/support/docview.wss?uid=swg1IC88796 - Vendor Advisory
References	~~() http://www-01.ibm.com/support/docview.wss?uid=swg1IC88797 -~~	() http://www-01.ibm.com/support/docview.wss?uid=swg1IC88797 -
References	~~() http://www-01.ibm.com/support/docview.wss?uid=swg1IC94043 - Vendor Advisory~~	() http://www-01.ibm.com/support/docview.wss?uid=swg1IC94043 - Vendor Advisory
References	~~() http://www-01.ibm.com/support/docview.wss?uid=swg1IC94044 - Vendor Advisory~~	() http://www-01.ibm.com/support/docview.wss?uid=swg1IC94044 - Vendor Advisory
References	~~() http://www-01.ibm.com/support/docview.wss?uid=swg21643599 - Vendor Advisory~~	() http://www-01.ibm.com/support/docview.wss?uid=swg21643599 - Vendor Advisory
References	~~() https://exchange.xforce.ibmcloud.com/vulnerabilities/84593 -~~	() https://exchange.xforce.ibmcloud.com/vulnerabilities/84593 -

Information

Published : 2013-09-09 01:55

Updated : 2025-04-11 00:51

NVD link : CVE-2013-3031

Mitre link : CVE-2013-3031

CVE.ORG link : CVE-2013-3031

JSON object : View

Products Affected

ibm

soliddb

CWE

CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer

{"id": "CVE-2013-3031", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 3.5, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:S/C:N/I:N/A:P", "authentication": "SINGLE", "integrityImpact": "NONE", "accessComplexity": "MEDIUM", "availabilityImpact": "PARTIAL", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "LOW", "obtainAllPrivilege": false, "exploitabilityScore": 6.8, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2013-09-09T01:55:06.437", "references": [{"url": "http://www-01.ibm.com/support/docview.wss?uid=swg1IC88796", "tags": ["Vendor Advisory"], "source": "psirt@us.ibm.com"}, {"url": "http://www-01.ibm.com/support/docview.wss?uid=swg1IC88797", "source": "psirt@us.ibm.com"}, {"url": "http://www-01.ibm.com/support/docview.wss?uid=swg1IC94043", "tags": ["Vendor Advisory"], "source": "psirt@us.ibm.com"}, {"url": "http://www-01.ibm.com/support/docview.wss?uid=swg1IC94044", "tags": ["Vendor Advisory"], "source": "psirt@us.ibm.com"}, {"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21643599", "tags": ["Vendor Advisory"], "source": "psirt@us.ibm.com"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/84593", "source": "psirt@us.ibm.com"}, {"url": "http://www-01.ibm.com/support/docview.wss?uid=swg1IC88796", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www-01.ibm.com/support/docview.wss?uid=swg1IC88797", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www-01.ibm.com/support/docview.wss?uid=swg1IC94043", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www-01.ibm.com/support/docview.wss?uid=swg1IC94044", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21643599", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/84593", "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Deferred", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-119"}]}], "descriptions": [{"lang": "en", "value": "A SQL stored procedure in the Universal Cache component in IBM solidDB 6.0.x before 6.0.1070, 6.3.x before 6.3.0.56, 6.5.x before 6.5.0.12, and 7.0.x before 7.0.0.4 allows remote authenticated users to cause a denial of service (uninitialized-memory access and daemon crash) via a call that includes named arguments and default parameter values, but does not include all of the expected arguments."}, {"lang": "es", "value": "Un procedimiento SQL almacenado en el componente de Cache Universal de IBM solidDB 6.0.x (anteriores a 6.0.1070), 6.3.x (anteriores a 6.3.0.56), 6.5.x (anteriores a 6.5.0.12), y 7.0.x (anteriores a 7.0.0.4) permite a usuarios remotos autentificados causar una denegaci\u00f3n de servicio (acceso a memoria no inicializada y ca\u00edda de demonio) a trav\u00e9s de una llamada que incluye argumentos con nombre y par\u00e1metros con valores por defecto, pero no incluye todos los argumentos que se esperaban."}], "lastModified": "2025-04-11T00:51:21.963", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:ibm:soliddb:6.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "184C4445-85A4-4EDD-A8E7-DC78BBECC014"}, {"criteria": "cpe:2.3:a:ibm:soliddb:6.0.1060:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "52BFE67B-53D1-4D07-A90D-8103C0C06BCE"}, {"criteria": "cpe:2.3:a:ibm:soliddb:6.0.1061:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1BAF8235-C7C6-4CBD-89AF-636ADD9F2C51"}, {"criteria": "cpe:2.3:a:ibm:soliddb:6.0.1064:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "314B1005-9DEA-4F8C-9527-5F6A511A2B66"}, {"criteria": "cpe:2.3:a:ibm:soliddb:6.0.1065:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3E76225E-A7C1-4E52-B2C9-B3D491B2B1DA"}, {"criteria": "cpe:2.3:a:ibm:soliddb:6.0.1066:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7D7CFB62-6B88-4A1E-8346-7F7BC8A6B3D9"}, {"criteria": "cpe:2.3:a:ibm:soliddb:6.0.1067:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C53D246D-826F-42D4-887B-F05BFB5DD1B2"}, {"criteria": "cpe:2.3:a:ibm:soliddb:6.0.1068:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1480DA44-FF29-48C0-8F20-144F7F6927BB"}, {"criteria": "cpe:2.3:a:ibm:soliddb:6.0.1069:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A2C83825-D301-41A0-AD27-B6304BC43F31"}, {"criteria": "cpe:2.3:a:ibm:soliddb:6.3.33:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6CC69E56-801F-4498-8284-A5E3542BE533"}, {"criteria": "cpe:2.3:a:ibm:soliddb:6.3.34:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "449FC71E-AAB2-4080-B17A-B0E13A7D53E7"}, {"criteria": "cpe:2.3:a:ibm:soliddb:6.3.37:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B04C078E-F68C-4C01-90B7-E24BA1279402"}, {"criteria": "cpe:2.3:a:ibm:soliddb:6.3.38:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5441322D-6072-4A61-852B-01E59BBD6F93"}, {"criteria": "cpe:2.3:a:ibm:soliddb:6.3.39:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FA69EEDE-CEA5-4AA0-9DEF-4651DE01D9C6"}, {"criteria": "cpe:2.3:a:ibm:soliddb:6.3.40:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C63BFFB0-4BFF-4243-AABB-89F1048BDBDF"}, {"criteria": "cpe:2.3:a:ibm:soliddb:6.3.41:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2278B9BD-5187-4DBE-B4AF-2E2FC7C4AF84"}, {"criteria": "cpe:2.3:a:ibm:soliddb:6.3.42:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2491D376-DDC4-4A37-80E9-2662F3108349"}, {"criteria": "cpe:2.3:a:ibm:soliddb:6.3.44:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C2C3E73F-71CA-4DD8-B9A2-B20E3FDD6109"}, {"criteria": "cpe:2.3:a:ibm:soliddb:6.3.47:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "653AFFD4-B925-4FE1-8484-FB95FBBDE571"}, {"criteria": "cpe:2.3:a:ibm:soliddb:6.3.48:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "27E00281-B911-460F-8CE3-CD2E6BBA9D19"}, {"criteria": "cpe:2.3:a:ibm:soliddb:6.3.49:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6E223A8E-DB18-4777-9F06-A642E620F12D"}, {"criteria": "cpe:2.3:a:ibm:soliddb:6.3.52:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DE8862B9-672F-4E36-A64B-D14F84504CB5"}, {"criteria": "cpe:2.3:a:ibm:soliddb:6.3.53:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8860A189-A39E-4C96-ACDB-E17FDB1A1795"}, {"criteria": "cpe:2.3:a:ibm:soliddb:6.3.54:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "224D2697-E0A1-43A5-B6C6-3222A6893AD5"}, {"criteria": "cpe:2.3:a:ibm:soliddb:6.3.55:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CF3425AD-8D33-455E-B84C-9B38B838D611"}, {"criteria": "cpe:2.3:a:ibm:soliddb:6.5.0.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1C7CD010-0CF0-4111-A056-40C134367809"}, {"criteria": "cpe:2.3:a:ibm:soliddb:6.5.0.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "36D87E5B-D3F5-4DE1-9AEE-EBC91E18D729"}, {"criteria": "cpe:2.3:a:ibm:soliddb:6.5.0.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5CBF08E2-20E5-4042-A782-4FE89823C33B"}, {"criteria": "cpe:2.3:a:ibm:soliddb:6.5.0.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "59C7C86D-30BE-4BF0-A006-CB2FB3D674B7"}, {"criteria": "cpe:2.3:a:ibm:soliddb:6.5.0.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DB4EC9D6-2A47-4F2B-B800-891B54751A42"}, {"criteria": "cpe:2.3:a:ibm:soliddb:6.5.0.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "49E47444-C63B-491F-8C7F-18F8B71BEAE6"}, {"criteria": "cpe:2.3:a:ibm:soliddb:6.5.0.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D70BEFBC-D4F4-4D23-A4B0-D6DF23FE90A5"}, {"criteria": "cpe:2.3:a:ibm:soliddb:6.5.0.7:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8AA19E9B-19FC-40EF-844C-709D989D2AB7"}, {"criteria": "cpe:2.3:a:ibm:soliddb:6.5.0.8:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D6CACC9F-D565-46C9-B739-2A59FC0D2054"}, {"criteria": "cpe:2.3:a:ibm:soliddb:6.5.09:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "55F762F8-7C38-4B36-A5B3-E6803AA12DD2"}, {"criteria": "cpe:2.3:a:ibm:soliddb:6.5.10:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8B2FAB84-77DF-41CF-A039-E785A4A5436C"}, {"criteria": "cpe:2.3:a:ibm:soliddb:6.5.11:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0E641EB0-9E57-4C83-83E2-516B0732F1D6"}, {"criteria": "cpe:2.3:a:ibm:soliddb:7.0.0.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "398C36B9-78C4-4045-B795-8637833030DA"}, {"criteria": "cpe:2.3:a:ibm:soliddb:7.0.0.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E891751B-C446-4625-93B7-B54A819203D4"}, {"criteria": "cpe:2.3:a:ibm:soliddb:7.0.0.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "260B6A3C-7B6C-4630-B376-CA2C150529D3"}, {"criteria": "cpe:2.3:a:ibm:soliddb:7.0.0.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1979CF48-CBDC-41F8-BE14-C989B4A44235"}], "operator": "OR"}]}], "sourceIdentifier": "psirt@us.ibm.com"}

3.5 /10