PT-2010-5267 · Ibm · Ibm Informix Dynamic Server

Publicado

2010-10-22

Atualizado

2017-08-17

CVE-2010-4053

CVSS v2.0

9.0

Alta

Vetor

AV:N/AC:L/Au:S/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions IBM Informix Dynamic Server (IDS) versions 11.10 before 11.10.xC2W2 IBM Informix Dynamic Server (IDS) versions 11.50 before 11.50.xC1

Description A stack-based buffer overflow issue exists in an unspecified logging function in oninit.exe, allowing remote authenticated users to execute arbitrary code via a crafted EXPLAIN directive.

Recommendations For IBM Informix Dynamic Server (IDS) versions 11.10 before 11.10.xC2W2, update to version 11.10.xC2W2 or later. For IBM Informix Dynamic Server (IDS) versions 11.50 before 11.50.xC1, update to version 11.50.xC1 or later.

Correção

Buffer Overflow

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-119

Identificadores relacionados

CVE-2010-4053

Produtos afetados

Ibm Informix Dynamic Server

PT-2010-5267 · Ibm · Ibm Informix Dynamic Server

CVE-2010-4053

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 6