266 matches found
CVE-2018-1630
IBM Informix Dynamic Server Enterprise Edition 12.1 could allow a local user logged in with database administrator user to gain root privileges through a symbolic link vulnerability in onmode. IBM X-Force ID: 144430...
Design/Logic Flaw
IBM Informix Dynamic Server Enterprise Edition 12.1 could allow a local user logged in with database administrator user to gain root privileges through a symbolic link vulnerability in infos.DBSERVERNAME. IBM X-Force ID: 144437...
CVE-2018-1631
IBM Informix Dynamic Server Enterprise Edition 12.1 could allow a local user logged in with database administrator user to gain root privileges through a symbolic link vulnerability in oninit mongohash. IBM X-Force ID: 144431...
CVE-2018-1636
CVE-2018-1636 affects IBM Informix Dynamic Server Enterprise Edition 12.1. The issue is a stack-based buffer overflow in oninit that, when exploited by an authenticated local user, can execute code with root privileges (local privilege escalation). Remediation per IBM bulletin: upgrade to IBM Inf...
CVE-2018-1631
IBM Informix Dynamic Server Enterprise Edition 12.1 is affected by a local privilege-escalation vulnerability (CVE-2018-1631) where a DBA-user can gain root privileges via a symbolic link vulnerability in oninit mongohash. Affected product: IBM Informix Dynamic Server Enterprise Edition 12.1. Roo...
CVE-2018-1630
IBM Informix Dynamic Server (IDS) Privilege Escalation (CVE-2018-1630) affects IDS v12.10 (Enterprise) where a local DBA can gain root via a symbolic link vulnerability in onmode. The IBM advisory (IDS security bulletin) confirms the root cause as a symbolic link issue and lists a remediation: up...
PT-2019-9537 · Ibm · Ibm Informix Dynamic Server Enterprise Edition
Name of the Vulnerable Software and Affected Versions: IBM Informix Dynamic Server Enterprise Edition version 12.1 Description: A local user could potentially load malicious libraries and gain root privileges. Recommendations: For IBM Informix Dynamic Server Enterprise Edition version 12.1, at th...
PT-2019-9295 · Ibm · Ibm Informix Dynamic Server Enterprise Edition
Name of the Vulnerable Software and Affected Versions: IBM Informix Dynamic Server Enterprise Edition version 12.1 Description: The issue allows a local user logged in with database administrator privileges to gain root privileges through a symbolic link vulnerability in oninit mongohash...
PT-2019-9300 · Ibm · Ibm Informix Dynamic Server Enterprise Edition
Name of the Vulnerable Software and Affected Versions: IBM Informix Dynamic Server Enterprise Edition version 12.1 Description: The issue is a stack-based buffer overflow in the oninit function, allowing an authenticated user to execute predefined code with root privileges. This could enable an...
PT-2019-9298 · Ibm · Ibm Informix Dynamic Server Enterprise Edition
Name of the Vulnerable Software and Affected Versions: IBM Informix Dynamic Server Enterprise Edition version 12.1 Description: A symbolic link vulnerability exists in infos.DBSERVERNAME, which could allow a local user logged in with database administrator privileges to gain root privileges...
PT-2019-9297 · Ibm · Ibm Informix Dynamic Server Enterprise Edition
Name of the Vulnerable Software and Affected Versions: IBM Informix Dynamic Server Enterprise Edition version 12.1 Description: A symbolic link vulnerability in onsrvapd could allow a local user logged in with database administrator privileges to gain root privileges. Recommendations: For IBM...
PT-2019-9296 · Ibm · Ibm Informix Dynamic Server Enterprise Edition
Name of the Vulnerable Software and Affected Versions: IBM Informix Dynamic Server Enterprise Edition version 12.1 Description: A symbolic link vulnerability in .infxdirs could allow a local user logged in with database administrator privileges to gain root privileges. Recommendations: For IBM...
PT-2019-9293 · Ibm · Ibm Informix Dynamic Server Enterprise Edition
Name of the Vulnerable Software and Affected Versions: IBM Informix Dynamic Server Enterprise Edition version 12.1 Description: The issue allows a local user logged in with database administrator privileges to gain root privileges through a symbolic link vulnerability in onmode. Recommendations:...
PT-2019-16995 · Ibm · Ibm Informix Dynamic Server Enterprise Edition
Name of the Vulnerable Software and Affected Versions: IBM Informix Dynamic Server Enterprise Edition version 12.1 Description: The issue allows a local privileged Informix user to load a malicious shared library, potentially gaining root access privileges. Recommendations: For IBM Informix Dynam...
Security Bulletin: Vulnerability in Install of Informix Dynamic Server on Windows (CVE-2016-0226)
Summary IBM Informix Dynamic Server, Windows Client, is vulnerable to a privilege escalation attack. Vulnerability Details CVEID: CVEID: CVE-2016-0226 DESCRIPTION: Windows client installations of IBM Informix Dynamic Server could allow a local user to gain privileges. CVSS Base Score: 8.4 CVSS...
Security Bulletin: A security vulnerability has been identified in Informix Dynamic Server and IBM® DB2® shipped with IBM Tivoli Network Manager IP Edition (CVE-2014-8730)
Summary Informix Dynamic Server and IBM® DB2® are shipped as a component of IBM Tivoli Network Manager IP Edition. Information about a security vulnerability affecting Informix Dynamic Server and IBM® DB2® have been published in a security bulletin. Vulnerability Details Please consult the securi...
Security Bulletin: IBM Informix Dynamic Server is affected by a privilege escalation vulnerability
Summary IBM Informix Dynamic Server has addressed the following vulnerability. Vulnerability Details CVEID: CVE-2017-1508 DESCRIPTION: IBM Informix Dynamic Server could allow a local user logged in with database administrator user to gain root privileges. CVSS Base Score: 6.7 CVSS Temporal Score:...
Security Bulletin: IBM Informix Dynamic Server is affected by a buffer overflow in Informix function FORMAT_UNITS
Summary IBM Informix Dynamic Server has addressed the following vulnerability. Vulnerability Details CVEID: CVE-2017-1310 DESCRIPTION: IBM Informix Dynamic Server could allow an authenticated user to cause a buffer overflow that would write large assertion fail files to the server. Done enough...
Security Bulletin: A security vulnerability has been identified in Informix Dynamic Server shipped with WebSphere Remote Server (CVE-2014-8730)
Summary Informix Dynamic Server is shipped as a component of WebSphere Remote Server. Information about a security vulnerability affecting Informix Dynamic Server has been published in a security bulletin. Vulnerability Details For vulnerability details, see the security bulletin TLS padding...
IBM Open Admin Tool SOAP welcomeServer PHP Command Injection
Added: 09/27/2017 CVE: CVE-2017-1092 BID: 98615 Background IBM Informix Dynamic Server IDS is an online transaction processing OLTP data server for enterprise and workgroup computing. Open Admin Tool OAT is an open source, platform-independent tool providing a graphical interface for administrati...