CVE-2011-1033

Name of the Vulnerable Software and Affected Versions IBM Informix Dynamic Server version 11.50

Description The issue is related to a stack-based buffer overflow in the oninit function of IBM Informix Dynamic Server. This occurs when crafted arguments are used in the USELASTCOMMITTED session environment option within a SQL SET ENVIRONMENT statement, potentially allowing remote attackers to execute arbitrary code.

Recommendations For IBM Informix Dynamic Server version 11.50, consider restricting access to the SQL SET ENVIRONMENT statement until a patch is available. As a temporary workaround, avoid using crafted arguments in the USELASTCOMMITTED session environment option to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.