HTTP: IBM Informix Dynamic Server index.php testconn Heap Buffer Overflow
This signature detects attempts to exploit a known vulnerability in IBM's Informix Dynamic Server and Informix Open Admin Tool. Successful exploitation could result in code execution with SYSTEM privileges.
Extended Description
IBM Informix Open Admin Tool 11.5, 11.7, and 12.1 could allow an unauthorized user to execute arbitrary code as system admin on Windows servers. IBM X-Force ID: 120390.
Affected Products
Ibm informix_open_admin_tool
References
CVE: CVE-2017-1092
Short Name
HTTP:IBM-INFORMIX-DS-BO
Severity
Major
Recommended
True
Recommended Action
Drop
Category
HTTP
Keywords
Buffer CVE-2017-1092 Dynamic Heap IBM Informix Overflow Server index.php testconn
Release Date
06/20/2017
Supported Platforms
srx-branch-19.3
vsrx3bsd-19.2
srx-19.4
vsrx3bsd-19.4
srx-branch-19.4
vsrx-19.4
vsrx-19.2
srx-19.3
srx-branch-12.3
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx-12.3
vmx-19.3
srx-12.3
Sigpack Version
3337
False Positive
Unknown
Vendors
Ibm
CVSS Score
10.0