EUVD-2008-0379

Malware in sbrugna...

EUVD-2006-3856

Malware in sbrugna...

IBM Informix Dynamic Server multiple security vulnerabilities

SQLIDEBUG and onedcu operators allow to access arbitrary files...

iDefense Security Advisory 01.31.08: IBM Informix Dynamic Server SQLIDEBUG File Creation Vulnerability

iDefense Security Advisory 01.31.08 http://labs.idefense.com/intelligence/vulnerabilities/ Jan 31, 2008 I. BACKGROUND IBM Corp.'s Informix Dynamic Server is an online transaction processing data server. For more information, visit the product's homepage at the following URL...

CVE-2008-0369

IBM Informix Dynamic Server (IDS) 10.x prior to 10.00.xC8 is affected by a local file-creation vulnerability involving the SQLIDEBUG environment variable. When set, several set-UID binaries log to the specified file and change the file’s ownership to the invoking user, enabling local privilege es...

SQLIDEBUG envariable overflow on Informix

NGSSoftware Insight Security Research Advisory Name: SQLIDEBUG envariable overflow on Informix Systems Affected: 9.40.xC6 and earlier and 10.00.xC2, C1 Severity: High Vendor URL: http://www.ibm.com/ Author: David Litchfield [email protected] Date of Public Advisory: 2nd August 2006 Advisory...

CVE-2006-3862

Buffer overflow in IBM Informix Dynamic Server IDS 9.40.TC5 through 9.40.xC7 and 10.00.TC1 through 10.00.xC3 allows attackers to execute arbitrary code via the SQLIDEBUG environment variable envariable...

CVE-2006-3862

Buffer overflow in IBM Informix Dynamic Server IDS 9.40.TC5 through 9.40.xC7 and 10.00.TC1 through 10.00.xC3 allows attackers to execute arbitrary code via the SQLIDEBUG environment variable envariable...