CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2008-0949

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0300%
EPSS Percentile0.01th
Published2008年3月18日
Last Modified2026年4月23日

Vulnerability Description

Unspecified vulnerability in IBM Informix Dynamic Server (IDS) 7.x through 11.x allows remote attackers to gain privileges via a malformed connection request packet.

Affected Platforms (CPE)

📦
Ibm

Informix Dynamic Server

= 7.3
📦
Ibm

Informix Dynamic Server

= 7.31.xd8
📦
Ibm

Informix Dynamic Server

= 7.31.xd9
📦
Ibm

Informix Dynamic Server

= 9.3
📦
Ibm

Informix Dynamic Server

= 9.4
📦
Ibm

Informix Dynamic Server

= 9.40.tc5
📦
Ibm

Informix Dynamic Server

= 9.40.uc1
📦
Ibm

Informix Dynamic Server

= 9.40.uc2
📦
Ibm

Informix Dynamic Server

= 9.40.uc3
📦
Ibm

Informix Dynamic Server

= 9.40.uc5
📦
Ibm

Informix Dynamic Server

= 9.40.xd8
📦
Ibm

Informix Dynamic Server

= 9.40_xc7
📦
Ibm

Informix Dynamic Server

= 10.0
📦
Ibm

Informix Dynamic Server

= 10.0.xc3
📦
Ibm

Informix Dynamic Server

= 10.0.xc4
📦
Ibm

Informix Dynamic Server

= 10.00.xc7w1
📦
Ibm

Informix Dynamic Server

= 11.10.xc2

References & Advisories

🔗 http://secunia.com/advisories/29272
🔗 http://www-1.ibm.com/support/search.wss?rs=0&q=IC55224&apar=only
🔗 http://www-1.ibm.com/support/search.wss?rs=0&q=IC55225&apar=only
🔗 http://www.informixmag.com/content/view/11143/27/
🔗 http://www.informixmag.com/content/view/11144/27/
🔗 http://www.securityfocus.com/bid/28198
🔗 http://www.vupen.com/english/advisories/2008/0860
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/41370

相關漏洞威脅

CVE-2009-275310.0

Multiple buffer overflows in the authentication functionality in librpc.dll in the Informix Storage Manager (ISM) Portmapper servi...

CVE-2009-275410.0

Integer signedness error in the authentication functionality in librpc.dll in the Informix Storage Manager (ISM) Portmapper servic...

CVE-2008-076810.0

Multiple stack-based and heap-based buffer overflows in the Windows RPC components for IBM Informix Storage Manager (ISM), as used...

CVE-2010-407010.0

Integer overflow in librpc.dll in portmap.exe (aka the ISM Portmapper service) in ISM before 2.20.TC1.117 in IBM Informix Dynamic ...