Description: Some vulnerabilities have been reported in Informix Dynamic Server, which can be exploited by malicious, local users to gain escalated privileges.
1) An error within the "onedcu" command can be exploited to write to a specified trace file with escalated privileges.
2) An error in various set-uid binaries within the handling of the "SQLIDEBUG" environment variable can be exploited to create arbitrary files on an affected system.
Solution: IDS 11.x:
Update to version 11.10.xC2W1 or later.
IDS 10.x:
Update to version 10.00.xC8.
IDS 9.x:
Update to version 9.40.xC10 (see vendor advisory for more information).
Provided and/or discovered by: An anonymous person, reported via iDefense Labs.
Changelog: 2008-02-04: Added CVE reference.
2008-02-05: Updated Advisory with information from iDefense.
2008-05-05: Updated "Solution" section, added vendor links, and added version 9.x in list of affected products.
2008-05-06: Updated "Solution" and "Original Advisory" sections. Added version 11.x to list of affected products.
If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com.
Ideas, suggestions, and other feedback are most welcome.
