Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2012-4857
HistoryDec 08, 2012 - 3:55 p.m.

CVE-2012-4857

2012-12-0815:55:01
CWE-119
[email protected]
web.nvd.nist.gov
4

CVSS2

9

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:S/C:C/I:C/A:C

AI Score

7.7

Confidence

Low

EPSS

0.095

Percentile

94.8%

JSON

Buffer overflow in IBM Informix 11.50 through 11.50.xC9W2 and 11.70 before 11.70.xC7 allows remote authenticated users to execute arbitrary code via a crafted SQL statement.

Affected configurations

Nvd
Node
ibminformix_dynamic_serverMatch11.50
OR
ibminformix_dynamic_serverMatch11.50.xc1
OR
ibminformix_dynamic_serverMatch11.50.xc2
OR
ibminformix_dynamic_serverMatch11.50.xc3
OR
ibminformix_dynamic_serverMatch11.50.xc3w1
OR
ibminformix_dynamic_serverMatch11.50.xc4
OR
ibminformix_dynamic_serverMatch11.50.xc4w1
OR
ibminformix_dynamic_serverMatch11.50.xc5
OR
ibminformix_dynamic_serverMatch11.50.xc5w2
OR
ibminformix_dynamic_serverMatch11.50.xc5w3
OR
ibminformix_dynamic_serverMatch11.50.xc5w4
OR
ibminformix_dynamic_serverMatch11.50.xc6
OR
ibminformix_dynamic_serverMatch11.50.xc6w1
OR
ibminformix_dynamic_serverMatch11.50.xc6w2
OR
ibminformix_dynamic_serverMatch11.50.xc6w3
OR
ibminformix_dynamic_serverMatch11.50.xc6w4
OR
ibminformix_dynamic_serverMatch11.50.xc7
OR
ibminformix_dynamic_serverMatch11.50.xc7w1
OR
ibminformix_dynamic_serverMatch11.50.xc7w2
OR
ibminformix_dynamic_serverMatch11.50.xc7w3
OR
ibminformix_dynamic_serverMatch11.50.xc7w4
OR
ibminformix_dynamic_serverMatch11.50.xc8
OR
ibminformix_dynamic_serverMatch11.50.xc8w1
OR
ibminformix_dynamic_serverMatch11.50.xc8w2
OR
ibminformix_dynamic_serverMatch11.50.xc8w3
OR
ibminformix_dynamic_serverMatch11.50.xc8w4
OR
ibminformix_dynamic_serverMatch11.50.xc9
OR
ibminformix_dynamic_serverMatch11.70.xc1
OR
ibminformix_dynamic_serverMatch11.70.xc2
OR
ibminformix_dynamic_serverMatch11.70.xc3
VendorProductVersionCPE
ibminformix_dynamic_server11.50cpe:2.3:a:ibm:informix_dynamic_server:11.50:*:*:*:*:*:*:*
ibminformix_dynamic_server11.50.xc1cpe:2.3:a:ibm:informix_dynamic_server:11.50.xc1:*:*:*:*:*:*:*
ibminformix_dynamic_server11.50.xc2cpe:2.3:a:ibm:informix_dynamic_server:11.50.xc2:*:*:*:*:*:*:*
ibminformix_dynamic_server11.50.xc3cpe:2.3:a:ibm:informix_dynamic_server:11.50.xc3:*:*:*:*:*:*:*
ibminformix_dynamic_server11.50.xc3w1cpe:2.3:a:ibm:informix_dynamic_server:11.50.xc3w1:*:*:*:*:*:*:*
ibminformix_dynamic_server11.50.xc4cpe:2.3:a:ibm:informix_dynamic_server:11.50.xc4:*:*:*:*:*:*:*
ibminformix_dynamic_server11.50.xc4w1cpe:2.3:a:ibm:informix_dynamic_server:11.50.xc4w1:*:*:*:*:*:*:*
ibminformix_dynamic_server11.50.xc5cpe:2.3:a:ibm:informix_dynamic_server:11.50.xc5:*:*:*:*:*:*:*
ibminformix_dynamic_server11.50.xc5w2cpe:2.3:a:ibm:informix_dynamic_server:11.50.xc5w2:*:*:*:*:*:*:*
ibminformix_dynamic_server11.50.xc5w3cpe:2.3:a:ibm:informix_dynamic_server:11.50.xc5w3:*:*:*:*:*:*:*
Rows per page:
1-10 of 301

Related

prion 1
cvelist 1
nessus 1
ibm 1
cve 1
prion
prion
Buffer overflow
2012-12-08 15:55:00
cvelist
cvelist
CVE-2012-4857
2012-12-08 15:00:00
nessus
nessus
IBM Informix Dynamic Server 11.50.x / 11.70.x < 11.70.xC7 RCE (credentialed check)
2013-09-24 00:00:00
ibm
ibm
Security Bulletin: Buffer overrun vulnerability when executing unspecified SQL statements in IBM Informix (CVE-2012-4857)
2022-09-25 23:13:40
cve
cve
CVE-2012-4857
2012-12-08 15:55:01

CVSS2

9

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:S/C:C/I:C/A:C

AI Score

7.7

Confidence

Low

EPSS

0.095

Percentile

94.8%

JSON
Related for NVD:CVE-2012-4857
prion1cvelist1nessus1ibm1cve1