Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveMitreCVE-2010-4070
HistoryOct 25, 2010 - 8:01 p.m.

CVE-2010-4070

2010-10-2520:01:06
CWE-189
mitre
web.nvd.nist.gov
24
cve
2010
4070
integer overflow
librpc.dll
portmap.exe
ism
ibm informix dynamic server
ids
remote attackers
arbitrary code
denial of service
heap memory corruption

CVSS2

10

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

8.1

Confidence

High

EPSS

0.027

Percentile

90.7%

JSON

Integer overflow in librpc.dll in portmap.exe (aka the ISM Portmapper service) in ISM before 2.20.TC1.117 in IBM Informix Dynamic Server (IDS) 7.x before 7.31.xD11, 9.x before 9.40.xC10, 10.00 before 10.00.xC8, and 11.10 before 11.10.xC2 allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via a crafted parameter size, aka idsdb00146931, idsdb00146930, idsdb00146929, and idsdb00138308.

Affected configurations

Nvd
Node
ibminformix_dynamic_serverMatch7.31
OR
ibminformix_dynamic_serverMatch9.40.tc5
OR
ibminformix_dynamic_serverMatch9.40.uc1
OR
ibminformix_dynamic_serverMatch9.40.uc2
OR
ibminformix_dynamic_serverMatch9.40.uc3
OR
ibminformix_dynamic_serverMatch9.40.uc5
OR
ibminformix_dynamic_serverMatch9.40.xc5
OR
ibminformix_dynamic_serverMatch9.40.xc7
OR
ibminformix_dynamic_serverMatch10.00
OR
ibminformix_dynamic_serverMatch10.00.tc3tl
OR
ibminformix_dynamic_serverMatch10.00.xc1
OR
ibminformix_dynamic_serverMatch10.00.xc2
OR
ibminformix_dynamic_serverMatch10.00.xc3
OR
ibminformix_dynamic_serverMatch10.00.xc4
OR
ibminformix_dynamic_serverMatch10.00.xc5
OR
ibminformix_dynamic_serverMatch10.00.xc6
OR
ibminformix_dynamic_serverMatch10.00.xc7w1
OR
ibminformix_dynamic_serverMatch10.00.xc8
OR
ibminformix_dynamic_serverMatch10.00.xc9
OR
ibminformix_dynamic_serverMatch10.00.xc10
OR
ibminformix_dynamic_serverMatch11.10
OR
ibminformix_dynamic_serverMatch11.10.tb4tl
OR
ibminformix_dynamic_serverMatch11.10.xc1
OR
ibminformix_dynamic_serverMatch11.10.xc1de
OR
ibminformix_dynamic_serverMatch11.50
VendorProductVersionCPE
ibminformix_dynamic_server7.31cpe:2.3:a:ibm:informix_dynamic_server:7.31:*:*:*:*:*:*:*
ibminformix_dynamic_server9.40.tc5cpe:2.3:a:ibm:informix_dynamic_server:9.40.tc5:*:*:*:*:*:*:*
ibminformix_dynamic_server9.40.uc1cpe:2.3:a:ibm:informix_dynamic_server:9.40.uc1:*:*:*:*:*:*:*
ibminformix_dynamic_server9.40.uc2cpe:2.3:a:ibm:informix_dynamic_server:9.40.uc2:*:*:*:*:*:*:*
ibminformix_dynamic_server9.40.uc3cpe:2.3:a:ibm:informix_dynamic_server:9.40.uc3:*:*:*:*:*:*:*
ibminformix_dynamic_server9.40.uc5cpe:2.3:a:ibm:informix_dynamic_server:9.40.uc5:*:*:*:*:*:*:*
ibminformix_dynamic_server9.40.xc5cpe:2.3:a:ibm:informix_dynamic_server:9.40.xc5:*:*:*:*:*:*:*
ibminformix_dynamic_server9.40.xc7cpe:2.3:a:ibm:informix_dynamic_server:9.40.xc7:*:*:*:*:*:*:*
ibminformix_dynamic_server10.00cpe:2.3:a:ibm:informix_dynamic_server:10.00:*:*:*:*:*:*:*
ibminformix_dynamic_server10.00.tc3tlcpe:2.3:a:ibm:informix_dynamic_server:10.00.tc3tl:*:*:*:*:*:*:*
Rows per page:
1-10 of 251

Related

nvd 1
cvelist 1
prion 1
nvd
nvd
CVE-2010-4070
2010-10-25 20:01:06
cvelist
cvelist
CVE-2010-4070
2010-10-25 19:00:00
prion
prion
Integer overflow
2010-10-25 20:01:00

CVSS2

10

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

8.1

Confidence

High

EPSS

0.027

Percentile

90.7%

JSON
Related for CVE-2010-4070
nvd1cvelist1prion1