Heap overflow

2008-02-1322:00:00

PRIOn knowledge base

www.prio-n.com

8.1 High

AI Score

Confidence

Low

0.017 Low

EPSS

Percentile

88.0%

JSON

Multiple stack-based and heap-based buffer overflows in the Windows RPC components for IBM Informix Storage Manager (ISM), as used in Informix Dynamic Server (IDS) 10.00.xC8 and earlier and 11.10.xC2 and earlier, allow attackers to execute arbitrary code via crafted XDR requests.

CPENameOperatorVersion
informix_dynamic_serverge10.0
informix_dynamic_serverle10.00.
informix_dynamic_serverge11.10
informix_dynamic_serverle11.10.

Name	Operator	Version
informix_dynamic_server	ge	10.0
informix_dynamic_server	le	10.00.
informix_dynamic_server	ge	11.10
informix_dynamic_server	le	11.10.

References

secunia.com/advisories/28689

www-01.ibm.com/support/docview.wss?uid=swg21294211

www-1.ibm.com/support/search.wss?rs=0&q=IC55040&apar=only

www-1.ibm.com/support/search.wss?rs=0&q=IC55041&apar=only

www.securityfocus.com/bid/27485

www.securitytracker.com/id?1019281

www.vupen.com/english/advisories/2008/0317

exchange.xforce.ibmcloud.com/vulnerabilities/40018