CVSS: 10.0EPSS: 1%CPEs: 4EXPL: 0CVE-2008-0768
https://notcve.org/view.php?id=CVE-2008-0768
Multiple stack-based and heap-based buffer overflows in the Windows RPC components for IBM Informix Storage Manager (ISM), as used in Informix Dynamic Server (IDS) 10.00.xC8 and earlier and 11.10.xC2 and earlier, allow attackers to execute arbitrary code via crafted XDR requests. Múltiples desbordamientos de búfer basados en pila y en montículo en los componentes Windows RPC para IBM Informix Storage Manager (ISM), como se utilizan en Informix Dynamic Server (IDS) 10.00.xC8 y anteriores y 11.10.xC2 y anteriores. Permiten a atacantes ejecutar código de su elección a través de peticiones XDR manipuladas. • http://secunia.com/advisories/28689 http://www-01.ibm.com/support/docview.wss?uid=swg21294211 http://www-1.ibm.com/support/search.wss?rs=0&q=IC55040&apar=only http://www-1.ibm.com/support/search.wss?rs=0&q=IC55041&apar=only http://www.securityfocus.com/bid/27485 http://www.securitytracker.com/id?1019281 http://www.vupen.com/english/advisories/2008/0317 https://exchange.xforce.ibmcloud.com/vulnerabilities/40018 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •