IBM Informix Dynamic Server 11.50.x / 11.70.x < 11.70.xC7 RCE (credentialed check)

high Nessus Plugin ID 70098

Synopsis

A database server installed on the remote host is affected by a remote code execution vulnerability.

Description

The version of IBM Informix Dynamic Server installed on the remote host is 11.50.x or 11.70.x prior to 11.70.xC7. It is, therefore, affected by a remote code execution vulnerability in the 'genxmlqueryhdr' and genxmlquery' XML functions due to an overflow condition. An authenticated, remote attacker can exploit this, via a specially crafted statement, to cause a denial of service condition or the execution of arbitrary code.

Solution

Upgrade to IBM Informix Dynamic Server version 11.70.xC7 or later.

See Also

http://www-01.ibm.com/support/docview.wss?uid=swg21618994

Plugin Details

Severity: High

ID: 70098

File Name: ibm_informix_server_swg21618994.nasl

Version: 1.9

Type: local

Agent: windows

Family: Databases

Published: 9/24/2013

Updated: 9/18/2020

Supported Sensors: Nessus Agent, Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 5.9

CVSS v2

Risk Factor: High

Base Score: 9

Temporal Score: 6.7

Vector: CVSS2#AV:N/AC:L/Au:S/C:C/I:C/A:C

CVSS Score Source: CVE-2012-4857

CVSS v3

Risk Factor: High

Base Score: 8.8

Temporal Score: 7.7

Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C

Vulnerability Information

CPE: cpe:/a:ibm:informix_dynamic_server

Required KB Items: installed_sw/IBM Informix Dynamic Server

Exploit Ease: No known exploits are available

Patch Publication Date: 12/18/2012

Vulnerability Publication Date: 12/6/2012

Reference Information

CVE: CVE-2012-4857

BID: 56857