NVD

Id
347  
Name
CVE-2008-0369  
Description
Multiple unspecified programs in IBM Informix Dynamic Server (IDS) 10.x before 10.00.xC8 allow local users to create arbitrary files by specifying the target file in the SQLIDEBUG environment variable, whose ownership is changed to the user invoking the programs.  
Reject
 
CVSS Version
2  
CVSS Score
6.9  
Severity
Medium  
CVSS Base Score
6.9  
CVSS Impact Subscore
10  
CVSS Exploit Subscore
3.4  
CVSS Vector
(AV:L/AC:M/Au:N/C:C/I:C/A:C)  
Pub Date
2017-01-03  
Published
2008-01-18  
Modified Date
2011-05-11  
Seq
2008-0369  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
2289 347 CVE-2008-0369 20080131 IBM Informix Dynamic Server SQLIDEBUG File Creation Vulnerability  View
2290 347 CVE-2008-0369 IC54309  View
2291 347 CVE-2008-0369 http://www-1.ibm.com/support/docview.wss?uid=swg27011556  View
2292 347 CVE-2008-0369 27328  View
2293 347 CVE-2008-0369 1019237  View
2294 347 CVE-2008-0369 ADV-2008-0169  View
2295 347 CVE-2008-0369 ibm-ids-onedcu-sqlidebug-unspecified(39751)  View
2296 347 CVE-2008-0369 ibm-ids-sqlidebug-unspecified(40009)  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
48654 JVNDB-2008-003964 IBM IDS における任意のファイルを作成される脆弱性 IBM Informix Dynamic Server (IDS) には、任意のファイルを作成される脆弱性が存在します。 CVE-2008-0369 30482 CVE-2008-0369 347 6.9 http://jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-003964.html 2008-01-18 2012-09-25 View