webdriver in IBM Informix Web DataBlade 4.12 allows remote attackers to bypass user access levels or read arbitrary files via a SQL injection attack in an HTTP request.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Informix_web_datablade | Ibm | 4.10 (including) | 4.10 (including) |
| Informix_web_datablade | Ibm | 4.11 (including) | 4.11 (including) |
| Informix_web_datablade | Ibm | 4.12 (including) | 4.12 (including) |
References
- http://archives.neohapsis.com/archives/bugtraq/2002-04/0135.html
- http://www.iss.net/security_center/static/8826.php
- http://www.securityfocus.com/bid/4496
- http://archives.neohapsis.com/archives/bugtraq/2002-04/0135.html
- http://www.iss.net/security_center/static/8826.php
- http://www.securityfocus.com/bid/4496