Teradata Gateway before 15.00.03.02-1 and 15.10.x before 15.10.00.01-1 and TD Express before 15.00.02.08_Sles10 and 15.00.02.08_Sles11 allow remote attackers to cause a denial of service (database crash) via a malformed CONFIG REQUEST message.
References
Link | Resource |
---|---|
https://blog.fortinet.com/2015/07/23/teradata-vulnerability-announced-big-potential-headaches-for-big-data-solution | Exploit Third Party Advisory |
http://www.securitytracker.com/id/1033005 | Third Party Advisory VDB Entry |
http://www.fortiguard.com/advisory/FG-VD-15-038/ | Broken Link |
Configurations
Configuration 1 (hide)
|
Information
Published : 2017-05-22 21:29
Updated : 2017-06-06 12:17
NVD link : CVE-2015-5401
Mitre link : CVE-2015-5401
JSON object : View
CWE
CWE-20
Improper Input Validation
Products Affected
teradata
- teradata_gateway
- teradata_express