IC55329: SECURITY: ISM PORTMAP.EXE CRASH ON WINDOWS

Subscribe to this APAR

By subscribing, you receive periodic emails alerting you to the status of the APAR, along with a link to the fix after it becomes available. You can track this item individually or track all items by product.

Notify me when this APAR changes.

Notify me when an APAR for this component changes.

APAR status

  • Closed as program error.

Error description

  • This problem was first reported by Zero Day Initiative
    CVE-2009-2753
    This vulnerability involves the RPC protocol parsing library,
    librpc.dll, utilized by the ISM Portmapper service
    (portmap.exe). During authentication, a lack of proper sanity
    checking on supplied parameter sizes can result in exploitable
    stack and heap based buffer overflows leading to arbitrary code
    execution with elevated privileges.
    

Local fix

Problem summary

  • ****************************************************************
    * USERS AFFECTED:                                              *
    * All users using Informix Storage Manager (ISM) on Microsoft  *
    * Windows platforms.                                           *
    ****************************************************************
    * PROBLEM DESCRIPTION:                                         *
    * The portmap executable (portmap.exe) which is part of ISM on *
    * Windows lacks proper sanity checking on supplied             *
    * parameter sizes during authentication. This can result in    *
    * exploitable stack and heap based buffer overflows leading    *
    * to arbitrary code execution under the context of the SYSTEM  *
    * user.                                                        *
    ****************************************************************
    * RECOMMENDATION:                                              *
    * Upgrade to IBM Informix Dynamic Server (IDS) 10.00.TC10 or   *
    * above.                                                       *
    ****************************************************************
    

Problem conclusion

  • Problem was first fixed in IDS 10.00.TC8W1
    

Temporary fix

Comments

APAR Information

  • APAR number

    IC55329

  • Reported component name

    IBM IDS

  • Reported component ID

    5724L2300

  • Reported release

    A10

  • Status

    CLOSED PER

  • PE

    NoPE

  • HIPER

    NoHIPER

  • Special Attention

    NoSpecatt

  • Submitted date

    2008-02-18

  • Closed date

    2011-01-25

  • Last modified date

    2011-01-25

  • APAR is sysrouted FROM one or more of the following:

  • APAR is sysrouted TO one or more of the following:

    IC55330

Fix information

  • Fixed component name

    IBM IDS

  • Fixed component ID

    5724L2300

Applicable component levels

  • R411 PSN

       UP



Rate this page:

(0 users)Average rating

Document information


More support for:

Informix Servers

Software version:

A10

Reference #:

IC55329

Modified date:

2011-01-25

Translate my page

Machine Translation

Content navigation