IBM Informix 12.10 DB-Access Buffer Overflow
Posted by deepcore on July 12, 2017 – 9:10 pm
IBM Informix DB-Access utility is vulnerable to a stack based buffer overflow, caused by improper bounds checking which could allow an attacker to execute arbitrary code. The vulnerability is triggered by providing an overly long file parameter value inside a LOAD statement, which is used to insert data from an operating-system file into an existing table or view. Version 12.10 is affected.
Post a reply
You must be logged in to post a comment.