CVE-2009-2754

IBM Informix Dynamic Server <11.10.TC3 - RCE

Title source: llm
STIX 2.1

Description

Integer signedness error in the authentication functionality in librpc.dll in the Informix Storage Manager (ISM) Portmapper service (aka portmap.exe), as used in IBM Informix Dynamic Server (IDS) 10.x before 10.00.TC9 and 11.x before 11.10.TC3 and EMC Legato NetWorker, allows remote attackers to execute arbitrary code via a crafted parameter size that triggers a stack-based buffer overflow.

Exploits (1)

exploitdb WORKING POC VERIFIED
by ZSploit.com · textdosmultiple
https://www.exploit-db.com/exploits/12109

References (10)

Core 10
Core References
Various Sources vendor-advisory x_refsource_aixapar
http://www.ibm.com/support/docview.wss?uid=swg1IC55329
Various Sources vendor-advisory x_refsource_aixapar
http://www.ibm.com/support/docview.wss?uid=swg1IC55330
Patch, Vendor Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2010/0508
Third Party Advisory x_refsource_misc
http://www.zerodayinitiative.com/advisories/ZDI-10-023
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/38731
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/509793/100/0/threaded
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/56586
Patch, Vendor Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2010/0509
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/38472

Scores

EPSS 0.5489
EPSS Percentile 98.1%

Details

CWE
CWE-189
Status published
Products (29)
emc/legato_networker
ibm/informix_dynamic_server 10.0
ibm/informix_dynamic_server 10.0.tc1
ibm/informix_dynamic_server 10.0.xc1
ibm/informix_dynamic_server 10.0.xc2e
ibm/informix_dynamic_server 10.0.xc3
ibm/informix_dynamic_server 10.0.xc3e
ibm/informix_dynamic_server 10.0.xc4
ibm/informix_dynamic_server 10.0.xc4e
ibm/informix_dynamic_server 10.0.xc5
... and 19 more
Published Mar 05, 2010
Tracked Since Feb 18, 2026