CVE-2008-0369

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2008-0369
Multiple unspecified programs in IBM Informix Dynamic Server (IDS) 10.x before 10.00.xC8 allow local users to create arbitrary files by specifying the target file in the SQLIDEBUG environment variable, whose ownership is changed to the user invoking the programs.

6.9 /10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:L/AC:M/Au:N/C:C/I:C/A:C

Exploitability : 3.4 / Impact : 10.0

Access Vector LOCAL

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References
Link Resource
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=650
http://secunia.com/advisories/28534 Vendor Advisory
http://www-1.ibm.com/support/docview.wss?uid=swg1IC54309
http://www-1.ibm.com/support/docview.wss?uid=swg27011556
http://www.securityfocus.com/bid/27328
http://www.securitytracker.com/id?1019237
http://www.vupen.com/english/advisories/2008/0169 Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/39751
https://exchange.xforce.ibmcloud.com/vulnerabilities/40009
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=650
http://secunia.com/advisories/28534 Vendor Advisory
http://www-1.ibm.com/support/docview.wss?uid=swg1IC54309
http://www-1.ibm.com/support/docview.wss?uid=swg27011556
http://www.securityfocus.com/bid/27328
http://www.securitytracker.com/id?1019237
http://www.vupen.com/english/advisories/2008/0169 Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/39751
https://exchange.xforce.ibmcloud.com/vulnerabilities/40009
Configurations

Configuration 1 (hide)

cpe:2.3:a:ibm:informix_dynamic_server:10.00:*:*:*:*:*:*:*
History

21 Nov 2024, 00:41

Type Values Removed Values Added
References () http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=650 - () http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=650 -
References () http://secunia.com/advisories/28534 - Vendor Advisory () http://secunia.com/advisories/28534 - Vendor Advisory
References () http://www-1.ibm.com/support/docview.wss?uid=swg1IC54309 - () http://www-1.ibm.com/support/docview.wss?uid=swg1IC54309 -
References () http://www-1.ibm.com/support/docview.wss?uid=swg27011556 - () http://www-1.ibm.com/support/docview.wss?uid=swg27011556 -
References () http://www.securityfocus.com/bid/27328 - () http://www.securityfocus.com/bid/27328 -
References () http://www.securitytracker.com/id?1019237 - () http://www.securitytracker.com/id?1019237 -
References () http://www.vupen.com/english/advisories/2008/0169 - Vendor Advisory () http://www.vupen.com/english/advisories/2008/0169 - Vendor Advisory
References () https://exchange.xforce.ibmcloud.com/vulnerabilities/39751 - () https://exchange.xforce.ibmcloud.com/vulnerabilities/39751 -
References () https://exchange.xforce.ibmcloud.com/vulnerabilities/40009 - () https://exchange.xforce.ibmcloud.com/vulnerabilities/40009 -
Information

Published : 2008-01-19 00:00

Updated : 2024-11-21 00:41

NVD link : CVE-2008-0369

Mitre link : CVE-2008-0369

CVE.ORG link : CVE-2008-0369

JSON object : View

Products Affected

ibm

  • informix_dynamic_server
CWE
NVD-CWE-noinfo

NetmanageIT Website NetmanageIT OSINT Web NetmanageIT OpenCTI NetmanageIT PDF Tools NetmanageIT CTO Corner Blog NetmanageIT Email Header Analyzer NetmanageIT Password Pusher NetmanageIT Internet Health and Latency Dashboard NetmanageIT Dedicated Speed Test Site NetmanageIT Ubuntu Mirror 10Gbps Copyright OpenCVE 2024