CVE-2010-4070

N/A Unknown
Published: October 25, 2010 Modified: April 29, 2026
View on NVD

Description

Integer overflow in librpc.dll in portmap.exe (aka the ISM Portmapper service) in ISM before 2.20.TC1.117 in IBM Informix Dynamic Server (IDS) 7.x before 7.31.xD11, 9.x before 9.40.xC10, 10.00 before 10.00.xC8, and 11.10 before 11.10.xC2 allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via a crafted parameter size, aka idsdb00146931, idsdb00146930, idsdb00146929, and idsdb00138308.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Login to generate AI explanation

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory
http://secunia.com/advisories/41915
Source: cve@mitre.org
Vendor Advisory
http://www.osvdb.org/68706
Source: cve@mitre.org
http://www.vupen.com/english/advisories/2010/2733
Source: cve@mitre.org
Vendor Advisory
http://www.zerodayinitiative.com/advisories/ZDI-10-215/
Source: cve@mitre.org
http://secunia.com/advisories/41915
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
http://www.osvdb.org/68706
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.vupen.com/english/advisories/2010/2733
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
http://www.zerodayinitiative.com/advisories/ZDI-10-215/
Source: af854a3a-2127-422b-91ae-364da2661108

8 reference(s) from NVD

Quick Stats

CVSS v3 Score
N/A / 10.0
EPSS (Exploit Probability)
5.2%
91th percentile
Exploitation Status
Not in CISA KEV

Weaknesses (CWE)

CWE-189

Affected Vendors

ibm

Related CVEs

CVE-2026-8662 3.3
CVE-2026-8658 6.0
CVE-2026-8666 7.7
CVE-2026-8665 7.7
CVE-2026-8664 6.0