Lucene search

[email protected]NVD:CVE-2007-5956

HistoryNov 14, 2007 - 11:46 a.m.

CVE-2007-5956

2007-11-1411:46:00

CWE-22

[email protected]

web.nvd.nist.gov

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

AI Score

6.3

Confidence

Low

EPSS

Percentile

5.1%

JSON

Directory traversal vulnerability in IBM Informix Dynamic Server (IDS) before 10.00.xC7W1 allows local users to gain privileges by referencing modified NLS message files through directory traversal sequences in the DBLANG environment variable.

Affected configurations

Nvd

Node

ibminformix_dynamic_serverRange≤10.00

VendorProductVersionCPE
ibminformix_dynamic_server*cpe:2.3:a:ibm:informix_dynamic_server:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
ibm	informix_dynamic_server	*	cpe:2.3:a:ibm:informix_dynamic_server::::::::

References

labs.idefense.com/intelligence/vulnerabilities/display.php?id=624

secunia.com/advisories/27542

www-1.ibm.com/support/docview.wss?uid=swg1IC54252

www-1.ibm.com/support/docview.wss?uid=swg27011082

www.securityfocus.com/bid/26363

www.vupen.com/english/advisories/2007/3757

exchange.xforce.ibmcloud.com/vulnerabilities/38297

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

AI Score

6.3

Confidence

Low

EPSS

Percentile

5.1%

JSON

Related for NVD:CVE-2007-5956

cvelist1 cve2 prion2 nvd1