Emdros Database Engine Multiple Local Denial of Service Vulnerabilities
BID:21444
Info
Emdros Database Engine Multiple Local Denial of Service Vulnerabilities
| Bugtraq ID: | 21444 |
| Class: | Design Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Dec 05 2006 12:00AM |
| Updated: | Dec 06 2006 10:19PM |
| Credit: | The vendor reported these issues. |
| Vulnerable: |
Ulrik Petersen Emrdos Database Engine 1.2.0.pre230 Ulrik Petersen Emdros Database Engine 1.2.0.pre225 Ulrik Petersen Emdros Database Engine 1.2.0.pre222 Ulrik Petersen Emdros Database Engine 1.2.0.pre218 Ulrik Petersen Emdros Database Engine 1.2.0.pre206 Ulrik Petersen Emdros Database Engine 1.2.0.pre195 Ulrik Petersen Emdros Database Engine 1.2.0.pre172 Ulrik Petersen Emdros Database Engine 1.2.0.pre167 Ulrik Petersen Emdros Database Engine 1.2.0.pre160 Ulrik Petersen Emdros Database Engine 1.2.0.pre155 Ulrik Petersen Emdros Database Engine 1.2.0.pre143 Ulrik Petersen Emdros Database Engine 1.2.0.pre142 |
| Not Vulnerable: |
Ulrik Petersen Emdros Database Engine 1.2.0.pre231 |
Discussion
Emdros Database Engine Multiple Local Denial of Service Vulnerabilities
Emdros Database Engine is prone to multiple local denial-of-service vulnerabilities.
These issues occur because the application fails to handle specially crafted database requests.
A remote attacker can exploit these vulnerabilities to consume all memory resources, denying service to legitimate users.
Versions 1.2.0 prior to pre231 are vulnerable to these issues.
Emdros Database Engine is prone to multiple local denial-of-service vulnerabilities.
These issues occur because the application fails to handle specially crafted database requests.
A remote attacker can exploit these vulnerabilities to consume all memory resources, denying service to legitimate users.
Versions 1.2.0 prior to pre231 are vulnerable to these issues.
Exploit / POC
Emdros Database Engine Multiple Local Denial of Service Vulnerabilities
Currently we are not aware of any exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected]
Currently we are not aware of any exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected]
Solution / Fix
Emdros Database Engine Multiple Local Denial of Service Vulnerabilities
Solution:
The vendor has released an update to address these issues. Please see the references for more information.
Solution:
The vendor has released an update to address these issues. Please see the references for more information.
References
Emdros Database Engine Multiple Local Denial of Service Vulnerabilities
References:
References:
- Emdros Database Engine Version 1.2.0.pre231 Release Notes (Ulrik Petersen)
- Vendor Home Page (Ulrik Petersen)