CVE-2010-4069

Stack-based buffer overflow in IBM Informix Dynamic Server (IDS) 7.x through 7.31, 9.x through 9.40, 10.00 before 10.00.xC10, 11.10 before 11.10.xC3, and 11.50 before 11.50.xC3 allows remote authenticated users to execute arbitrary code via long DBINFO keyword arguments in a SQL statement, aka idsdb00165017, idsdb00165019, idsdb00165021, idsdb00165022, and idsdb00165023.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
8.5 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:S/C:C/I:C/A:C
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 91%
VendorProductVersion
ibminformix_dynamic_server
7.31
ibminformix_dynamic_server
9.40.tc5:tc5
ibminformix_dynamic_server
9.40.uc1:uc1
ibminformix_dynamic_server
9.40.uc2:uc2
ibminformix_dynamic_server
9.40.uc3:uc3
ibminformix_dynamic_server
9.40.uc5:uc5
ibminformix_dynamic_server
9.40.xc5:xc5
ibminformix_dynamic_server
9.40.xc7:xc7
ibminformix_dynamic_server
10.00
ibminformix_dynamic_server
10.00.tc3tl:tc3tl
ibminformix_dynamic_server
10.00.xc1:xc1
ibminformix_dynamic_server
10.00.xc2:xc2
ibminformix_dynamic_server
10.00.xc3:xc3
ibminformix_dynamic_server
10.00.xc4:xc4
ibminformix_dynamic_server
10.00.xc5:xc5
ibminformix_dynamic_server
10.00.xc6:xc6
ibminformix_dynamic_server
10.00.xc7w1:xc7w1
ibminformix_dynamic_server
10.00.xc8:xc8
ibminformix_dynamic_server
10.00.xc9:xc9
ibminformix_dynamic_server
10.00.xc10:xc10
ibminformix_dynamic_server
11.10
ibminformix_dynamic_server
11.10.tb4tl:tb4tl
ibminformix_dynamic_server
11.10.xc1:xc1
ibminformix_dynamic_server
11.10.xc1de:xc1de
ibminformix_dynamic_server
11.10.xc2:xc2
ibminformix_dynamic_server
11.10.xc2e:xc2e
ibminformix_dynamic_server
11.50
ibminformix_dynamic_server
11.50.xc1:xc1
ibminformix_dynamic_server
11.50.xc2:xc2
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://secunia.com/advisories/41914
http://www.osvdb.org/68707
http://www.vupen.com/english/advisories/2010/2735
http://www.zerodayinitiative.com/advisories/ZDI-10-217/
http://secunia.com/advisories/41914
http://www.osvdb.org/68707
http://www.vupen.com/english/advisories/2010/2735
http://www.zerodayinitiative.com/advisories/ZDI-10-217/