6.5

CVE-2006-3855

The ifx_load_internal function in IBM Informix Dynamic Server (IDS) allows remote authenticated users to execute arbitrary C code via the DllMain or _init function in a library, aka "C code UDR."
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
IbmInformix Dynamic Server Version9.4
IbmInformix Dynamic Server Version9.40.tc5
IbmInformix Dynamic Server Version9.40.uc1
IbmInformix Dynamic Server Version9.40.uc2
IbmInformix Dynamic Server Version9.40.uc3
IbmInformix Dynamic Server Version9.40.uc5
IbmInformix Dynamic Server Version10.0
IbmInformix Dynamic Server Version10.0.xc3
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 1.89% 0.77
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 6.5 8 6.4
AV:N/AC:L/Au:S/C:P/I:P/A:P
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://secunia.com/advisories/21301
http://www-1.ibm.com/support/docview.wss?uid=swg21242921
Not Applicable
http://www.databasesecurity.com/informix/DatabaseHackersHandbook-AttackingInformix.pdf
Broken Link
http://www.securityfocus.com/archive/1/443133/100/0/threaded
http://www.securityfocus.com/bid/19264
Patch
Third Party Advisory
VDB Entry
http://www.vupen.com/english/advisories/2006/3077
Permissions Required
http://www.osvdb.org/27689
Broken Link
http://www.securityfocus.com/archive/1/443184/100/0/threaded
https://exchange.xforce.ibmcloud.com/vulnerabilities/28129