CVE-2009-3691

IBM Informix Client SDK - Numeric Error

Title source: rule

Description

Multiple integer overflows in setnet32.exe 3.50.0.13752 in IBM Informix Client SDK 3.0 and 3.50 and Informix Connect Runtime 3.x allow remote attackers to execute arbitrary code via a .nfx file with a crafted (1) HostSize, and possibly (2) ProtoSize and (3) ServerSize, field that triggers a stack-based buffer overflow involving a crafted HostList field. NOTE: some of these details are obtained from third party information.

Exploits (1)

exploitdb WORKING POC VERIFIED

by bruiser · phpremotewindows

https://www.exploit-db.com/exploits/10070

View Code ZIP pw:eip

References (7)

[Exploit] http://retrogod.altervista.org/9sg_ibm_setnet32.html

[Vendor Advisory] http://secunia.com/advisories/36949

[Third Party Advisory, VDB Entry] http://www.osvdb.org/58530

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/36588

[Vendor Advisory] http://www.vupen.com/english/advisories/2009/2834

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/53644

[Third Party Advisory, VDB Entry] http://securitytracker.com/id?1022985

Scores

EPSS 0.1707

EPSS Percentile 95.0%

Details

CWE

CWE-189

Status published

Products (3)

ibm/informix_client_sdk 3.0

ibm/informix_client_sdk 3.50

ibm/informix_connect_runtime 3.0

Published Oct 13, 2009

Tracked Since Feb 18, 2026