CVE-2010-4069 Information

Description

Stack-based buffer overflow in IBM Informix Dynamic Server (IDS) 7.x through 7.31 9.x through 9.40 10.00 before 10.00.xC10 11.10 before 11.10.xC3 and 11.50 before 11.50.xC3 allows remote authenticated users to execute arbitrary code via long DBINFO keyword arguments in a SQL statement aka idsdb00165017 idsdb00165019 idsdb00165021 idsdb00165022 and idsdb00165023.

Reference

http://secunia.com/advisories/41914 http://www.osvdb.org/68707 http://www.vupen.com/english/advisories/2010/2735 http://www.zerodayinitiative.com/advisories/ZDI-10-217/