IBM » Informix Dynamic Server : Security Vulnerabilities, CVEs, Published In 2004
Buffer overflow in IBM Informix Dynamic Server (IDS) 9.40.xC1 and 9.40.xC2 allows local users to execute arbitrary code via a long GL_PATH environment variable.
Max CVSS
4.6
EPSS Score
0.04%
Published
2004-12-31
Updated
2017-07-11
Format string vulnerability in IBM Informix Dynamic Server (IDS) before 9.40.xC3 allows local users to execute arbitrary code via a modified INFORMIXDIR environment variable that points to a file with format string specifiers in the filename.
Max CVSS
4.6
EPSS Score
0.11%
Published
2004-12-31
Updated
2017-07-11
IBM Informix Dynamic Server (IDS) before 9.40.xC3 allows local users to (1) create or overwrite files via the /001 log file to onedcu or (2) read arbitrary files via a symlink attack on a file in /tmp to onshowaudit.
Max CVSS
3.6
EPSS Score
0.04%
Published
2004-12-31
Updated
2017-07-11
Stack-based buffer overflow in ontape for IBM Informix Dynamic Server (IDS) 9.40.xC3 and earlier allows local users, with DSA privileges, to execute arbitrary code via a long ONCONFIG environment variable.
Max CVSS
7.2
EPSS Score
0.04%
Published
2004-01-27
Updated
2017-07-11
4 vulnerabilities found