CVE Vulnerability

CVE-2008-0768

Multiple stack-based and heap-based buffer overflows in the Windows RPC components for IBM Informix Storage Manager (ISM), as used in Informix Dynamic Server (IDS) 10.00.xC8 and earlier and 11.10.xC2 and earlier, allow attackers to execute arbitrary code via crafted XDR requests.

10 /10

CVSS v2.0 :

V3 Legend

Vector :

Exploitability : 10 / Impact : 10

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

Scope

References
Link Resource
http://www-1.ibm.com/support/search.wss?rs=0&q=IC55040&apar=only Vendor Advisory
http://www-1.ibm.com/support/search.wss?rs=0&q=IC55041&apar=only Vendor Advisory
http://www.securitytracker.com/id?1019281 Third Party Advisory VDB Entry
http://secunia.com/advisories/28689 Third Party Advisory
http://www-01.ibm.com/support/docview.wss?uid=swg21294211 Vendor Advisory
http://www.securityfocus.com/bid/27485 Third Party Advisory VDB Entry
http://www.vupen.com/english/advisories/2008/0317 Permissions Required
https://exchange.xforce.ibmcloud.com/vulnerabilities/40018 Third Party Advisory VDB Entry
Configurations

Configuration 1
Information

Published : 2008-02-13 10:00

Updated : 2019-08-01 12:12

NVD link : CVE-2008-0768

Mitre link : CVE-2008-0768

Products Affected
No products.
CWE
CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer