TCP: IBM Informix Dynamic Server librpc.dll Multiple Buffer Overflows
This signature detects attempts to exploit a known vulnerability against IBM Informix Dynamic Server. A successful attack can lead to a buffer overflow and arbitrary remote code execution within the context of the server.
Extended Description
Multiple buffer overflows in the authentication functionality in librpc.dll in the Informix Storage Manager (ISM) Portmapper service (aka portmap.exe), as used in IBM Informix Dynamic Server (IDS) 10.x before 10.00.TC9 and 11.x before 11.10.TC3, allow remote attackers to execute arbitrary code via a crafted parameter size.
Affected Products
Ibm informix_dynamic_server
References
BugTraq: 38471
CVE: CVE-2009-2753
URL: http://www.ibm.com/support/docview.wss?uid=swg1ic55330 http://www.zerodayinitiative.com/advisories/zdi-10-022
Short Name
TCP:C2S:INFORMIX-LIBRPC-DLL-BOF
Severity
Major
Recommended
False
Recommended Action
Drop
Category
TCP
Keywords
Buffer CVE-2009-2753 Dynamic IBM Informix Multiple Overflows Server bid:38471 librpc.dll
Release Date
05/16/2024
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3705
Port
TCP/36890
False Positive
Unknown
Vendors
Ibm