CVE-2008-0768

Multiple stack-based and heap-based buffer overflows in the Windows RPC components for IBM Informix Storage Manager (ISM), as used in Informix Dynamic Server (IDS) 10.00.xC8 and earlier and 11.10.xC2 and earlier, allow attackers to execute arbitrary code via crafted XDR requests.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
10 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:C/I:C/A:C
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 88%
VendorProductVersion
ibminformix_dynamic_server
10.0 ≤
𝑥
≤ 10.00.xc8
ibminformix_dynamic_server
11.10 ≤
𝑥
≤ 11.10.xc2
ibminformix_storage_manager
-
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://secunia.com/advisories/28689
http://www-01.ibm.com/support/docview.wss?uid=swg21294211
http://www-1.ibm.com/support/search.wss?rs=0&q=IC55040&apar=only
http://www-1.ibm.com/support/search.wss?rs=0&q=IC55041&apar=only
http://www.securityfocus.com/bid/27485
http://www.securitytracker.com/id?1019281
http://www.vupen.com/english/advisories/2008/0317
https://exchange.xforce.ibmcloud.com/vulnerabilities/40018
http://secunia.com/advisories/28689
http://www-01.ibm.com/support/docview.wss?uid=swg21294211
http://www-1.ibm.com/support/search.wss?rs=0&q=IC55040&apar=only
http://www-1.ibm.com/support/search.wss?rs=0&q=IC55041&apar=only
http://www.securityfocus.com/bid/27485
http://www.securitytracker.com/id?1019281
http://www.vupen.com/english/advisories/2008/0317
https://exchange.xforce.ibmcloud.com/vulnerabilities/40018