CVE-2008-0768

Name of the Vulnerable Software and Affected Versions Informix Dynamic Server (IDS) versions 10.00.xC8 and earlier Informix Dynamic Server (IDS) versions 11.10.xC2 and earlier

Description The issue concerns multiple stack-based and heap-based buffer overflows in the Windows RPC components for IBM Informix Storage Manager (ISM), as used in Informix Dynamic Server (IDS). This allows attackers to execute arbitrary code via crafted XDR requests.

Recommendations For Informix Dynamic Server (IDS) versions 10.00.xC8 and earlier, update to a version later than 10.00.xC8 to resolve the issue. For Informix Dynamic Server (IDS) versions 11.10.xC2 and earlier, update to a version later than 11.10.xC2 to resolve the issue.