CVE-2010-4069

  • Last update: Apr 13, 2023

Description

Stack-based buffer overflow in IBM Informix Dynamic Server (IDS) 7.x through 7.31, 9.x through 9.40, 10.00 before 10.00.xC10, 11.10 before 11.10.xC3, and 11.50 before 11.50.xC3 allows remote authenticated users to execute arbitrary code via long DBINFO keyword arguments in a SQL statement, aka idsdb00165017, idsdb00165019, idsdb00165021, idsdb00165022, and idsdb00165023.

Software From Fixed in
ibm / informix_dynamic_server 9.40.uc3 9.40.uc3.x
ibm / informix_dynamic_server 11.50.xc1 11.50.xc1.x
ibm / informix_dynamic_server 9.40.uc2 9.40.uc2.x
ibm / informix_dynamic_server 9.40.xc7 9.40.xc7.x
ibm / informix_dynamic_server 11.50 11.50.x
ibm / informix_dynamic_server 9.40.tc5 9.40.tc5.x
ibm / informix_dynamic_server 11.10 11.10.x
ibm / informix_dynamic_server 9.40.xc5 9.40.xc5.x
ibm / informix_dynamic_server 9.40.uc1 9.40.uc1.x
ibm / informix_dynamic_server 10.00.xc3 10.00.xc3.x
ibm / informix_dynamic_server 10.00.xc9 10.00.xc9.x
ibm / informix_dynamic_server 10.00.xc6 10.00.xc6.x
ibm / informix_dynamic_server 10.00.xc1 10.00.xc1.x
ibm / informix_dynamic_server 10.00.xc4 10.00.xc4.x
ibm / informix_dynamic_server 11.10.xc1 11.10.xc1.x
ibm / informix_dynamic_server 10.00.xc10 10.00.xc10.x
ibm / informix_dynamic_server 10.00.tc3tl 10.00.tc3tl.x
ibm / informix_dynamic_server 10.00 10.00.x
ibm / informix_dynamic_server 11.10.xc2e 11.10.xc2e.x
ibm / informix_dynamic_server 10.00.xc7w1 10.00.xc7w1.x
ibm / informix_dynamic_server 11.10.xc1de 11.10.xc1de.x
ibm / informix_dynamic_server 11.10.tb4tl 11.10.tb4tl.x
ibm / informix_dynamic_server 10.00.xc2 10.00.xc2.x
ibm / informix_dynamic_server 10.00.xc8 10.00.xc8.x
ibm / informix_dynamic_server 10.00.xc5 10.00.xc5.x
ibm / informix_dynamic_server 11.10.xc2 11.10.xc2.x
ibm / informix_dynamic_server 7.31 7.31.x
ibm / informix_dynamic_server 9.40.uc5 9.40.uc5.x
ibm / informix_dynamic_server 11.50.xc2 11.50.xc2.x

Details

    • Severity: High
  • CVE: CVE-2010-4069
  • Published: Oct 25, 2010
  • Updated: Apr 13, 2023
  • Exploit:

CVSS v2

  • Severity: High
  • Score: 8.5
  • AV:N/AC:M/Au:S/C:C/I:C/A:C

CWEs