Lucene search

[email protected]NVD:CVE-2008-0369

HistoryJan 19, 2008 - 12:00 a.m.

CVE-2008-0369

2008-01-1900:00:00

[email protected]

web.nvd.nist.gov

CVSS2

6.9

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

AI Score

6.3

Confidence

Low

EPSS

Percentile

5.1%

JSON

Multiple unspecified programs in IBM Informix Dynamic Server (IDS) 10.x before 10.00.xC8 allow local users to create arbitrary files by specifying the target file in the SQLIDEBUG environment variable, whose ownership is changed to the user invoking the programs.

Affected configurations

Nvd

Node

ibminformix_dynamic_serverMatch10.00

VendorProductVersionCPE
ibminformix_dynamic_server10.00cpe:2.3:a:ibm:informix_dynamic_server:10.00:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
ibm	informix_dynamic_server	10.00	cpe:2.3:a:ibm:informix_dynamic_server:10.00:::::::*

References

labs.idefense.com/intelligence/vulnerabilities/display.php?id=650

secunia.com/advisories/28534

www-1.ibm.com/support/docview.wss?uid=swg1IC54309

www-1.ibm.com/support/docview.wss?uid=swg27011556

www.securityfocus.com/bid/27328

www.securitytracker.com/id?1019237

www.vupen.com/english/advisories/2008/0169

exchange.xforce.ibmcloud.com/vulnerabilities/39751

exchange.xforce.ibmcloud.com/vulnerabilities/40009

CVSS2

6.9

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

AI Score

6.3

Confidence

Low

EPSS

Percentile

5.1%

JSON

Related for NVD:CVE-2008-0369

prion1 securityvulns2 cvelist1 cve1