Unrated severityNVD Advisory· Published Apr 9, 2008· Updated Apr 23, 2026

CVE-2008-1705

Description

Format string vulnerability in the logging function in IBM solidDB 06.00.1018 and earlier allows remote attackers to execute arbitrary code via format string specifiers in the (1) user name, (2) peer name, and possibly unspecified other fields.

Affected products

IBM/Soliddb
cpe:2.3:a:ibm:soliddb:06.00.1018:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

aluigi.org/poc/soliduro.zipnvdExploit
aluigi.altervista.org/adv/soliduro-adv.txtnvd
secunia.com/advisories/29512nvd
securitytracker.com/idnvd
www.securityfocus.com/archive/1/490129/100/0/threadednvd
www.securityfocus.com/bid/28468nvd
www.vupen.com/english/advisories/2008/1038nvd
exchange.xforce.ibmcloud.com/vulnerabilities/41485nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.004
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000