2 matches found
Integer overflow
Multiple integer overflows in setnet32.exe 3.50.0.13752 in IBM Informix Client SDK 3.0 and 3.50 and Informix Connect Runtime 3.x allow remote attackers to execute arbitrary code via a .nfx file with a crafted 1 HostSize, and possibly 2 ProtoSize and 3 ServerSize, field that triggers a stack-based...
CVE-2009-3691
CVE-2009-3691 affects IBM Informix Client SDK 3.0 and 3.50 and Informix Connect Runtime 3.x. A crafted .nfx file with manipulated HostSize (and possibly ProtoSize/ServerSize) triggers a stack-based buffer overflow in HostList, enabling remote code execution or crashes. Connected advisories confir...