Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2009-3691Improper Restriction of Operations within the Bounds of a Memory Buffer in IBM Informix Client SDK

CWE-1894 documents4 sources
Severity
9.3CRITICALNVD
EPSS
17.1%
top 5.00%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
2
IBM Informix Client SDKIBM Informix Connect Runtime
Timeline
PublishedOct 13
Latest updateMay 2

Description

Multiple integer overflows in setnet32.exe 3.50.0.13752 in IBM Informix Client SDK 3.0 and 3.50 and Informix Connect Runtime 3.x allow remote attackers to execute arbitrary code via a .nfx file with a crafted (1) HostSize, and possibly (2) ProtoSize and (3) ServerSize, field that triggers a stack-based buffer overflow involving a crafted HostList field. NOTE: some of these details are obtained from third party information.

CVSS vector

AV:N/AC:M/C:C/I:C/A:CExploitability: 8.6 | Impact: 10.0

Affected Packages2 packages

NVDibm/informix_client_sdk3.0, 3.50+1

🔴Vulnerability Details

2
GHSA
GHSA-4wp5-gx3f-rhgh: Multiple integer overflows in setnet322022-05-02
CVEList
CVE-2009-3691: Multiple integer overflows in setnet322009-10-13

💥Exploits & PoCs

1
Exploit-DB
IBM Informix Client SDK 3.0 - '.nfx' File Integer Overflow2009-10-05
CVE-2009-3691 — IBM Informix Client SDK vulnerability | cvebase