Multiple integer overflows in setnet32.exe 3.50.0.13752 in IBM Informix Client SDK 3.0 and 3.50 and Informix Connect Runtime 3.x allow remote attackers to execute arbitrary code via a .nfx file with a crafted (1) HostSize, and possibly (2) ProtoSize and (3) ServerSize, field that triggers a stack-based buffer overflow involving a crafted HostList field. NOTE: some of these details are obtained from third party information.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2009-10-13T10:00:00
Updated: 2024-08-07T06:38:30.200Z
Reserved: 2009-10-13T00:00:00
Link: CVE-2009-3691
Vulnrichment
No data.
NVD
Status : Modified
Published: 2009-10-13T10:30:00.670
Modified: 2024-11-21T01:07:58.153
Link: CVE-2009-3691
Redhat
No data.