CVSS: 8.8EPSS: 8%CPEs: 29EXPL: 0CVE-2010-4069
https://notcve.org/view.php?id=CVE-2010-4069
25 Oct 2010 — Stack-based buffer overflow in IBM Informix Dynamic Server (IDS) 7.x through 7.31, 9.x through 9.40, 10.00 before 10.00.xC10, 11.10 before 11.10.xC3, and 11.50 before 11.50.xC3 allows remote authenticated users to execute arbitrary code via long DBINFO keyword arguments in a SQL statement, aka idsdb00165017, idsdb00165019, idsdb00165021, idsdb00165022, and idsdb00165023. Desbordamiento de búfer basado en pila en IBM Informix Dynamic Server (IDS) v7.x hasta la v7.31, 9.x hasta la v9.40, v10.00 anterior a v10... • http://secunia.com/advisories/41914 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 10.0EPSS: 8%CPEs: 25EXPL: 0CVE-2010-4070
https://notcve.org/view.php?id=CVE-2010-4070
25 Oct 2010 — Integer overflow in librpc.dll in portmap.exe (aka the ISM Portmapper service) in ISM before 2.20.TC1.117 in IBM Informix Dynamic Server (IDS) 7.x before 7.31.xD11, 9.x before 9.40.xC10, 10.00 before 10.00.xC8, and 11.10 before 11.10.xC2 allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via a crafted parameter size, aka idsdb00146931, idsdb00146930, idsdb00146929, and idsdb00138308. Desbordamiento de entero en librpc.dll en portmap.exe (también conocido ... • http://secunia.com/advisories/41915 • CWE-189: Numeric Errors •
CVSS: 10.0EPSS: 28%CPEs: 28EXPL: 1CVE-2009-2753 – IBM Informix librpc.dll Multiple Remote Code Execution Vulnerabilities
https://notcve.org/view.php?id=CVE-2009-2753
01 Mar 2010 — Multiple buffer overflows in the authentication functionality in librpc.dll in the Informix Storage Manager (ISM) Portmapper service (aka portmap.exe), as used in IBM Informix Dynamic Server (IDS) 10.x before 10.00.TC9 and 11.x before 11.10.TC3, allow remote attackers to execute arbitrary code via a crafted parameter size. Múltiples desbordamientos de búfer en la funcionalidad de autenticación en la biblioteca librpc.dll en el servicio Portmapper de Informix Storage Manager (ISM) (también se conoce como por... • https://www.exploit-db.com/exploits/12109 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 10.0EPSS: 36%CPEs: 29EXPL: 1CVE-2009-2754 – Multiple Vendor librpc.dll Signedness Error Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2009-2754
01 Mar 2010 — Integer signedness error in the authentication functionality in librpc.dll in the Informix Storage Manager (ISM) Portmapper service (aka portmap.exe), as used in IBM Informix Dynamic Server (IDS) 10.x before 10.00.TC9 and 11.x before 11.10.TC3 and EMC Legato NetWorker, allows remote attackers to execute arbitrary code via a crafted parameter size that triggers a stack-based buffer overflow. Error de entero sin signo en la funcionalidad de autenticación en librpc.dll en Informix Storage Manager (ISM) Portmap... • https://www.exploit-db.com/exploits/12109 • CWE-189: Numeric Errors •
CVSS: 7.5EPSS: 1%CPEs: 19EXPL: 0CVE-2009-3470
https://notcve.org/view.php?id=CVE-2009-3470
29 Sep 2009 — IBM Informix Dynamic Server (IDS) 10.00 before 10.00.xC11, 11.10 before 11.10.xC4, and 11.50 before 11.50.xC5 allows remote attackers to cause a denial of service (memory corruption, assertion failure, and daemon crash) by sending a long password over a JDBC connection. IBM Informix Dynamic Server (IDS) v10.00 anterior a v10.00.xC11, v11.10 anterior a v11.10.xC4, y v11.50 anterior a v11.50.xC5 permite a atacantes remotos provocar una denegación de servicio (corrupción de memoria y caída de demonio) enviando... • http://secunia.com/advisories/36853 • CWE-399: Resource Management Errors •
CVSS: 10.0EPSS: 4%CPEs: 17EXPL: 0CVE-2008-0949
https://notcve.org/view.php?id=CVE-2008-0949
18 Mar 2008 — Unspecified vulnerability in IBM Informix Dynamic Server (IDS) 7.x through 11.x allows remote attackers to gain privileges via a malformed connection request packet. Vulnerabilidad no especificada en IBM Informix Dynamic Server (IDS) 7.x hasta 11.x permite a atacantes remotos ganar privilegios mediante paquetes de petición de conexión mal formados. • http://secunia.com/advisories/29272 •
CVSS: 8.8EPSS: 38%CPEs: 17EXPL: 0CVE-2008-0727 – IBM Informix Dynamic Server Authentication Password Stack Overflow Vulnerability
https://notcve.org/view.php?id=CVE-2008-0727
13 Mar 2008 — Multiple buffer overflows in oninit.exe in IBM Informix Dynamic Server (IDS) 7.x through 11.x allow (1) remote attackers to execute arbitrary code via a long password and (2) remote authenticated users to execute arbitrary code via a long DBPATH value. Múltiples Desbordamientos de búfer en oninit.exe de IBM Informix Dynamic Server (IDS) de la versión 7.x a la 11.x, permite (1)a atacantes remotos ejecutar código de su elección a través de una contraseña larga (2) y usuarios autenticados remotamente, pueden e... • http://secunia.com/advisories/29272 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 10.0EPSS: 4%CPEs: 4EXPL: 0CVE-2008-0768
https://notcve.org/view.php?id=CVE-2008-0768
13 Feb 2008 — Multiple stack-based and heap-based buffer overflows in the Windows RPC components for IBM Informix Storage Manager (ISM), as used in Informix Dynamic Server (IDS) 10.00.xC8 and earlier and 11.10.xC2 and earlier, allow attackers to execute arbitrary code via crafted XDR requests. Múltiples desbordamientos de búfer basados en pila y en montículo en los componentes Windows RPC para IBM Informix Storage Manager (ISM), como se utilizan en Informix Dynamic Server (IDS) 10.00.xC8 y anteriores y 11.10.xC2 y anteri... • http://secunia.com/advisories/28689 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.2EPSS: 0%CPEs: 1EXPL: 0CVE-2008-0368
https://notcve.org/view.php?id=CVE-2008-0368
18 Jan 2008 — onedcu in IBM Informix Dynamic Server (IDS) 10.x before 10.00.xC8 allows local users to create arbitrary files via the Trace file argument. onedcu en IBM Informix Dynamic Server (IDS) versiones 10.x anteriores a 10.00.xC8, permite a usuarios locales crear archivos arbitrarios por medio del argumento de archivo Trace. • http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=651 •
CVSS: 7.1EPSS: 0%CPEs: 1EXPL: 0CVE-2008-0369
https://notcve.org/view.php?id=CVE-2008-0369
18 Jan 2008 — Multiple unspecified programs in IBM Informix Dynamic Server (IDS) 10.x before 10.00.xC8 allow local users to create arbitrary files by specifying the target file in the SQLIDEBUG environment variable, whose ownership is changed to the user invoking the programs. Múltiples programas no especificados en IBM Informix Dynamic Server (IDS) versiones 10.x anteriores a 10.00.xC8, permiten a usuarios locales crear archivos arbitrarios especificando el archivo de destino en la variable de entorno SQLIDEBUG, cuya pr... • http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=650 •