CVE Vulnerabilities

CVE-2006-3860

Published: Aug 17, 2006 | Modified: Oct 17, 2018
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.5 HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

IBM Informix Dynamic Server (IDS) before 9.40.xC7 and 10.00 before 10.00.xC3 allows allows remote authenticated users to execute arbitrary commands via the (1) SET DEBUG FILE SQL command, and the (2) start_onpload and (3) dbexp functions.

Affected Software

Name Vendor Start Version End Version
Informix_dynamic_database_server Ibm 9.40.uc2 9.40.uc2
Informix_dynamic_database_server Ibm 10.0 10.0
Informix_dynamic_database_server Ibm 9.40.uc1 9.40.uc1
Informix_dynamic_database_server Ibm 9.40.xc7 9.40.xc7
Informix_dynamic_database_server Ibm 9.40.uc3 9.40.uc3
Informix_dynamic_database_server Ibm 7.3 7.3
Informix_dynamic_database_server Ibm 7.31_.xd8 7.31_.xd8
Informix_dynamic_database_server Ibm 10.0_xc3 10.0_xc3
Informix_dynamic_database_server Ibm 9.40.tc5 9.40.tc5
Informix_dynamic_database_server Ibm 9.40.uc5 9.40.uc5
Informix_dynamic_database_server Ibm 9.4 9.4

References