Check Point Advisories

Informix Storage Manager Buffer Overflow (CVE-2009-2754)

Check Point Reference: CPAI-2009-0623
Date Published: 2 Dec 2024
Severity: High
Last Updated: Monday 02 December, 2024
Source:
Industry Reference:CVE-2009-2754
Protection Provided by:

Security Gateway
R81, R80, R77, R75

Who is Vulnerable? IBM Informix Dynamic Server 10.0
IBM Informix IDS 10.0.TC1
IBM Informix IDS 10.0.xC1
IBM Informix Dynamic Server 10.0.xc2e
IBM Informix IDS 10.0.xC3
IBM Informix Dynamic Server 10.0.xc3e
IBM Informix Dynamic Server 10.0.xc4
IBM Informix Dynamic Server 10.0.xc4e
IBM Informix Dynamic Server 10.0.xc5
IBM Informix Dynamic Server 10.0.xc5e
IBM Informix Dynamic Server 10.0.xc6
IBM Informix Dynamic Server 10.0.xc6e
IBM Informix Dynamic Server 10.0.xc7
IBM Informix Dynamic Server 10.0.xc7e
IBM Informix Dynamic Server 10.0.xc8
IBM Informix Dynamic Server 10.0.xc8e
IBM Informix Dynamic Server 10.0.xc9
IBM Informix Dynamic Server 10.0.xc9e
IBM Informix Dynamic Server 10.0.xc10
IBM Informix Dynamic Server 10.0.xc10e
IBM Informix Dynamic Server 11.1
IBM Informix Dynamic Server 11.10
IBM Informix Dynamic Server 11.10.xC1
IBM Informix Dynamic Server 11.10.xc1de
IBM Informix Dynamic Server 11.10.xC2
IBM Informix Dynamic Server 11.10.xc2e
IBM Informix Dynamic Server 11.10.xC3
IBM Informix Dynamic Server 11.10.xc3e
Vulnerability Description A buffer overflow vulnerability exists in Informix Storage Manager. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system or cause application crashes.

Protection Overview

This protection detects attempts to exploit this vulnerability.

In order for the protection to be activated, update your Security Gateway product to the latest IPS update. For information on how to update IPS, go to SBP-2006-05, click on Protection tab and select the version of your choice.

Security Gateway R81 / R80 / R77 / R75

  1. In the IPS tab, click Protections and find the Informix Storage Manager Buffer Overflow (CVE-2009-2754) protection using the Search tool and Edit the protection's settings.
  2. Install policy on all Security Gateways.

This protection's log will contain the following information:

Attack Name:  IBM Protection Violation.
Attack Information:  Informix Storage Manager Buffer Overflow (CVE-2009-2754)

×
  Feedback
This website uses cookies for its functionality and for analytics and marketing purposes. By continuing to use this website, you agree to the use of cookies. For more information, please read our Cookies Notice.
OK