Back to search
CVE-2008-0727
Published: Mar 18, 2008
Modified: Aug 7, 2024
PUBLISHED
Description
Multiple buffer overflows in oninit.exe in IBM Informix Dynamic Server (IDS) 7.x through 11.x allow (1) remote attackers to execute arbitrary code via a long password and (2) remote authenticated users to execute arbitrary code via a long DBPATH value.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
ADV-2008-0860
vdb-entry
x_refsource_VUPEN
ibm-informix-oninit-bo(41203)
vdb-entry
x_refsource_XF
28198
vdb-entry
x_refsource_BID
20080313 ZDI-08-012: IBM Informix Dynamic Server Authentication Password Stack Overflow Vulnerability
mailing-list
x_refsource_BUGTRAQ
ibm-informix-oninit-dbpath-bo(41202)
vdb-entry
x_refsource_XF
http://www.zerodayinitiative.com/advisories/ZDI-08-012/
x_refsource_MISC
IC55208
vendor-advisory
x_refsource_AIXAPAR
http://www.zerodayinitiative.com/advisories/ZDI-08-011/
x_refsource_MISC
20080313 ZDI-08-011: IBM Informix Dynamic Server DBPATH Buffer Overflow Vulnerability
mailing-list
x_refsource_BUGTRAQ
IC55210
vendor-advisory
x_refsource_AIXAPAR
IC55207
vendor-advisory
x_refsource_AIXAPAR
IC55209
vendor-advisory
x_refsource_AIXAPAR
29272
third-party-advisory
x_refsource_SECUNIA
3749
third-party-advisory
x_refsource_SREASON
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now