PT-2008-2345 · Ibm · Ibm Informix Dynamic Server

Publicado

2008-03-18

Atualizado

2018-10-15

CVE-2008-0727

CVSS v2.0

8.5

Alta

Vetor

AV:N/AC:L/Au:S/C:N/I:C/A:C

Name of the Vulnerable Software and Affected Versions IBM Informix Dynamic Server (IDS) versions 7.x through 11.x

Description The issue is related to multiple buffer overflows in the oninit.exe component. This allows remote attackers to execute arbitrary code by providing a long password. Additionally, remote authenticated users can execute arbitrary code by specifying a long DBPATH value.

Recommendations For IBM Informix Dynamic Server (IDS) versions 7.x through 11.x, update to a version that includes a fix for the buffer overflows in oninit.exe to prevent arbitrary code execution.

Correção

Buffer Overflow

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-119

Identificadores relacionados

CVE-2008-0727

Produtos afetados

Ibm Informix Dynamic Server

PT-2008-2345 · Ibm · Ibm Informix Dynamic Server

CVE-2008-0727

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 15