CVE-2010-4053

EPSS 6.01%
Published 23.10.2010 20:39:04
Last modified 11.04.2025 00:51:21
Source cve@mitre.org
Teams watchlist Login
Open Login

Stack-based buffer overflow in an unspecified logging function in oninit.exe in IBM Informix Dynamic Server (IDS) 11.10 before 11.10.xC2W2 and 11.50 before 11.50.xC1 allows remote authenticated users to execute arbitrary code via a crafted EXPLAIN directive, aka idsdb00154125 and idsdb00154243.

Affected products Warnungen 0 Metrics 2 CWE 1 References 8

Data is provided by the National Vulnerability Database (NVD)

Ibm ≫ Informix Dynamic Server Version11.10

Ibm ≫ Informix Dynamic Server Version11.50

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	6.01%	0.897

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	9	8	10	AV:N/AC:L/Au:S/C:C/I:C/A:C

CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

http://secunia.com/advisories/41913

Vendor Advisory

http://www.osvdb.org/68705

http://www.vupen.com/english/advisories/2010/2734

Vendor Advisory

http://www.zerodayinitiative.com/advisories/ZDI-10-216/

https://exchange.xforce.ibmcloud.com/vulnerabilities/62619

https://nvd.nist.gov/vuln/detail/CVE-2010-4053

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2010-4053

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2010-4053

EUVD