CVE-2010-4053

high

Description

Stack-based buffer overflow in an unspecified logging function in oninit.exe in IBM Informix Dynamic Server (IDS) 11.10 before 11.10.xC2W2 and 11.50 before 11.50.xC1 allows remote authenticated users to execute arbitrary code via a crafted EXPLAIN directive, aka idsdb00154125 and idsdb00154243.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/62619

http://www.zerodayinitiative.com/advisories/ZDI-10-216/

http://www.vupen.com/english/advisories/2010/2734

http://www.osvdb.org/68705

http://secunia.com/advisories/41913

Details

Source: Mitre, NVD

Published: 2010-10-23

Updated: 2026-06-16

Risk Information

CVSS v2

Base Score: 9

Vector: CVSS2#AV:N/AC:L/Au:S/C:C/I:C/A:C

Severity: High

CVSS v3

Base Score: 8.8

Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Severity: High

EPSS

EPSS: 0.06009