Vulnerability in Emc Legato_networker
CVE-2009-2754
Integer signedness error in the authentication functionality in librpc.dll in the Informix Storage Manager (ISM) Portmapper service (aka portmap.exe), as used in IBM Informix Dynamic Server (IDS) 10.x before 10.00.TC9 and 11.x before 11.10…
EPSS: 0.549 (98.1th percentile) — read the EPSS interpretation.
Affected products
- Emc Legato_networker
- Ibm Informix_dynamic_server — versions 10.0.xc8, 10.0.xc8e, 10.0.xc6
- N/a — versions n/a
Weakness classification (CWE)
References
- cve@mitre.org (x_refsource_CONFIRM)
- 38731 (x_refsource_SECUNIA, Vendor Advisory, third-party-advisory)
- IC55329 (vendor-advisory, x_refsource_AIXAPAR)
- IC55330 (vendor-advisory, x_refsource_AIXAPAR)
- 20100301 ZDI-10-023: Multiple Vendor librpc.dll Signedness Error Remote Code Execution Vulnerability (mailing-list, x_refsource_BUGTRAQ)
- 38472 (vdb-entry, x_refsource_BID)
- ADV-2010-0508 (Patch, vdb-entry, x_refsource_VUPEN, Vendor Advisory)
- ADV-2010-0509 (Patch, vdb-entry, x_refsource_VUPEN, Vendor Advisory)
- cve@mitre.org (x_refsource_MISC)
- ibm-ids-portmap-bo(56586) (vdb-entry, x_refsource_XF)