IBM Informix Pre-Authentication Stack Overflow
- Published: 15 Apr 2008
IBM Informix Pre-Authentication Stack Overflow
CVE-2008-0949
Share
Type
- IBM Informix PreAuthentication Stack Overflow
Severity
- High
Affected products
- IBM Informix Dynamic Server
Date
- 2008-04-15
CVE Reference
- CVE-2008-0949
An advisory has been released today by MWR InfoSecurity relating to a Pre-authentication stack overflow in IBM Informix.
The IBM Informix Database service is vulnerable to a stack based buffer overflow which can be exploited remotely before the authentication has been completed.
The vulnerability would enable an attacker to execute arbitrary code on the system with the privileges of the Informix user. By default, this account is a member of the administrators group on a Microsoft Windows system.
The code responsible for parsing the parameters within the first packet of the protocol handshake does not validate the number of arguments it accepts. This results in the ability to overflow a stack buffer which in turn allows arbitrary code to be executed.
The vendor has released updates to resolve this issue, please refer to the following links: