Intrusion Prevention

IBM.SolidDB.Solid.EXE.Authentication.Bypass

Description

This indicates an attack attempt against an Authentication Bypass vulnerability in
IBM solidDB.
The vulnerability is caused by an error when the vulnerable software handles
the length of a password hash, which can be abused to bypass authentication to the database.

Affected Products

IBM solidDB 6.5
IBM solidDB 6.3
IBM solidDB 4.5.180

Impact

Information Disclosure: Remote attackers can gain sensitive information from vulnerable systems.

Recommended Actions

Apply the patch, available from the website.
http://www-01.ibm.com/software/data/soliddb/

CVE References

CVE-2011-1560