Code injection

IBM Informix Dynamic Server Enterprise Edition 12.1 could allow a local user logged in with database administrator user to gain root privileges through a symbolic link vulnerability in .infxdirs. IBM X-Force ID: 144432...

Code injection

IBM Informix Dynamic Server Enterprise Edition 12.1 could allow a local user logged in with database administrator user to gain root privileges through a symbolic link vulnerability in onmode. IBM X-Force ID: 144430...

Design/Logic Flaw

IBM Informix Dynamic Server Enterprise Edition 12.1 could allow a local user logged in with database administrator user to gain root privileges through a symbolic link vulnerability in infos.DBSERVERNAME. IBM X-Force ID: 144437...

Design/Logic Flaw

IBM Informix Dynamic Server Enterprise Edition 12.1 could allow a local user logged in with database administrator user to gain root privileges through a symbolic link vulnerability in onsrvapd. IBM X-Force ID: 144434...

Code injection

IBM Informix Dynamic Server Enterprise Edition 12.1 could allow a local user to load malicious libraries and gain root privileges. IBM X-Force ID: 149426...

CVE-2019-4253

CVE-2019-4253 affects IBM Informix Dynamic Server Enterprise Edition 12.1, where a local Informix user could load a malicious shared library to gain root privileges. The issue is a local privilege escalation via library loading. Remediation described in the IBM bulletin is to upgrade Informix to ...

CVE-2018-1796

CVE-2018-1796 affects IBM Informix Dynamic Server Enterprise Edition 12.1, where a local user could load malicious libraries and gain root privileges. The available connected documents indicate the issue is a local privilege escalation through library loading in IDS; remediation in public sources...

CVE-2018-1634

The CVE-2018-1634 issue affects IBM Informix Dynamic Server Enterprise Edition 12.1. A local user with DBA privileges can escalate to root via a symbolic link vulnerability in infos.DBSERVERNAME. What is vulnerable: the infos.DBSERVERNAME symbolic link handling in IDS; root privileges are stated ...

CVE-2018-1630

IBM Informix Dynamic Server (IDS) Privilege Escalation (CVE-2018-1630) affects IDS v12.10 (Enterprise) where a local DBA can gain root via a symbolic link vulnerability in onmode. The IBM advisory (IDS security bulletin) confirms the root cause as a symbolic link issue and lists a remediation: up...

CVE-2018-1636

CVE-2018-1636 affects IBM Informix Dynamic Server Enterprise Edition 12.1. The issue is a stack-based buffer overflow in oninit that, when exploited by an authenticated local user, can execute code with root privileges (local privilege escalation). Remediation per IBM bulletin: upgrade to IBM Inf...

CVE-2018-1631

IBM Informix Dynamic Server Enterprise Edition 12.1 could allow a local user logged in with database administrator user to gain root privileges through a symbolic link vulnerability in oninit mongohash. IBM X-Force ID: 144431...

CVE-2018-1632

CVE-2018-1632 affects IBM Informix Dynamic Server Enterprise Edition 12.1. A local DBA can escalate to root via a symbolic link vulnerability in the .infxdirs path. IBM and related advisories indicate a fix is available by upgrading to Informix Dynamic Server 12.10.FC13; remediation guidance appe...

CVE-2018-1631

IBM Informix Dynamic Server Enterprise Edition 12.1 is affected by a local privilege-escalation vulnerability (CVE-2018-1631) where a DBA-user can gain root privileges via a symbolic link vulnerability in oninit mongohash. Affected product: IBM Informix Dynamic Server Enterprise Edition 12.1. Roo...

CVE-2018-1635

CVE-2018-1635 – IBM Informix Dynamic Server Enterprise Edition (IDS 12.1) A stack-based buffer overflow in the oninit function can allow an authenticated local user to execute predefined code with root privileges. The vulnerability is reported against IDS Enterprise Edition 12.1 and is characteri...

CVE-2018-1633

CVE-2018-1633 affects IBM Informix Dynamic Server Enterprise Edition 12.1, where a local DBA could exploit a symbolic link vulnerability in onsrvapd to gain root privileges. The IBM/X-Force report and related bulletins confirm a local privilege-escalation issue with IDS/onsrvapd, consistent with ...

PT-2019-9295 · Ibm · Ibm Informix Dynamic Server Enterprise Edition

Name of the Vulnerable Software and Affected Versions: IBM Informix Dynamic Server Enterprise Edition version 12.1 Description: The issue allows a local user logged in with database administrator privileges to gain root privileges through a symbolic link vulnerability in oninit mongohash...

PT-2019-9300 · Ibm · Ibm Informix Dynamic Server Enterprise Edition

Name of the Vulnerable Software and Affected Versions: IBM Informix Dynamic Server Enterprise Edition version 12.1 Description: The issue is a stack-based buffer overflow in the oninit function, allowing an authenticated user to execute predefined code with root privileges. This could enable an...

PT-2019-9296 · Ibm · Ibm Informix Dynamic Server Enterprise Edition

Name of the Vulnerable Software and Affected Versions: IBM Informix Dynamic Server Enterprise Edition version 12.1 Description: A symbolic link vulnerability in .infxdirs could allow a local user logged in with database administrator privileges to gain root privileges. Recommendations: For IBM...

PT-2019-9298 · Ibm · Ibm Informix Dynamic Server Enterprise Edition

Name of the Vulnerable Software and Affected Versions: IBM Informix Dynamic Server Enterprise Edition version 12.1 Description: A symbolic link vulnerability exists in infos.DBSERVERNAME, which could allow a local user logged in with database administrator privileges to gain root privileges...

PT-2019-16995 · Ibm · Ibm Informix Dynamic Server Enterprise Edition

Name of the Vulnerable Software and Affected Versions: IBM Informix Dynamic Server Enterprise Edition version 12.1 Description: The issue allows a local privileged Informix user to load a malicious shared library, potentially gaining root access privileges. Recommendations: For IBM Informix Dynam...