CyberSec.Space Logo
Back to CVE Browser

CVE-2009-4240

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1750%
EPSS Percentile31.75th
PublishedDec 9, 2009
Last ModifiedApr 23, 2026

Vulnerability Description

Multiple buffer overflows in unspecified setuid executables in the DataStage subsystem in IBM InfoSphere Information Server 8.1 before FP1 have unknown impact and attack vectors.

Affected Platforms (CPE)

πŸ“¦
Ibm

Infosphere Information Server

= 8.1

References & Advisories

πŸ”— http://secunia.com/advisories/37556
πŸ”— http://www-01.ibm.com/support/docview.wss?uid=swg1JR30394
πŸ”— http://www-01.ibm.com/support/docview.wss?uid=swg21406224
πŸ”— http://www.osvdb.org/60807
πŸ”— http://www.securityfocus.com/bid/37245
πŸ”— http://www.vupen.com/english/advisories/2009/3432
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/54609
πŸ”— http://secunia.com/advisories/37556

Related Vulnerabilities

CVE-2020-275839.8

IBM InfoSphere Information Server 8.5.0.0 is affected by deserialization of untrusted data which could allow remote unauthenticate...

CVE-2012-02049.3

Untrusted search path vulnerability in InfoSphere Import Export Manager 8.1 through 9.1 in InfoSphere Information Server MetaBroke...

CVE-2021-389489.1

IBM InfoSphere Information Server 11.7 is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. A ...

CVE-2017-13839.1

IBM InfoSphere Information Server 9.1, 11.3, and 11.5 is vulnerable to a XML External Entity Injection (XXE) attack when processin...