|
|
CVE Reference: CVE-2008-0369 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2008-0369 |
|
|
Description: Multiple unspecified programs in IBM Informix Dynamic Server (IDS) 10.x before 10.00.xC8 allow local users to create arbitrary files by specifying the target file in the SQLIDEBUG environment variable, whose ownership is changed to the user invoking the programs. |
|
|
CVE Status: Candidate |
|
|
References: XF http://xforce.iss.net/xforce/xfdb/39751 http://xforce.iss.net/xforce/xfdb/40009 ST 1019237 SAID Secunia Advisory: SA28534 IDEFENSE http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=650 CONFIRM http://www-1.ibm.com/support/docview.wss?uid=swg27011556 BID 27328 AIXAPAR http://www-1.ibm.com/support/docview.wss?uid=swg1IC54309 |
|
| Return to the previous page. |
