CVE-2010-4053

EPSS 6.01%
Veröffentlicht 23.10.2010 20:39:04
Zuletzt bearbeitet 11.04.2025 00:51:21
Quelle cve@mitre.org
Teams Watchlist Login
Unerledigt Login

Stack-based buffer overflow in an unspecified logging function in oninit.exe in IBM Informix Dynamic Server (IDS) 11.10 before 11.10.xC2W2 and 11.50 before 11.50.xC1 allows remote authenticated users to execute arbitrary code via a crafted EXPLAIN directive, aka idsdb00154125 and idsdb00154243.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 8

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Ibm ≫ Informix Dynamic Server Version11.10

Ibm ≫ Informix Dynamic Server Version11.50

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	6.01%	0.897

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	9	8	10	AV:N/AC:L/Au:S/C:C/I:C/A:C

CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

http://secunia.com/advisories/41913

Vendor Advisory

http://www.osvdb.org/68705

http://www.vupen.com/english/advisories/2010/2734

Vendor Advisory

http://www.zerodayinitiative.com/advisories/ZDI-10-216/

https://exchange.xforce.ibmcloud.com/vulnerabilities/62619

https://nvd.nist.gov/vuln/detail/CVE-2010-4053

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2010-4053

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2010-4053

EUVD