Computer Security
[EN] securityvulns.ru no-pyccku


IBM Informix Dynamic Server privilege escalation
Published:12.11.2007
Source:
SecurityVulns ID:8331
Type:local
Threat Level:
6/10
Description:Directory traversal on DBLANG environment variable parsing allows to specify attacker-controlled NLS files, leading to possibility of format string attacks for suid applications.
Affected:IBM : Informix Dynamic Server 10.00
CVE:CVE-2007-5670
Original documentdocumentIDEFENSE, iDefense Security Advisory 11.09.07: IBM Informix Dynamic Server DBLANG Directory Traversal Vulnerability (12.11.2007)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod