Vulnerability Database

289,697

Total vulnerabilities in the database

CVE-2004-2319

IBM Informix Dynamic Server (IDS) before 9.40.xC3 allows local users to (1) create or overwrite files via the /001 log file to onedcu or (2) read arbitrary files via a symlink attack on a file in /tmp to onshowaudit.

  • Published: Dec 31, 2004
  • Updated: Apr 13, 2023
  • CVE: CVE-2004-2319
  • Severity: Low
  • Exploit:

CVSS v2:

  • Severity: Low
  • Score: 3.6
  • AV:L/AC:L/Au:N/C:P/I:P/A:N

No CWE or OWASP classifications available.

Software From Fixed in
ibm / informix_dynamic_server 9.40.uc2 9.40.uc2.x
ibm / informix_extended_parallel_server 8.40_uc1 8.40_uc1.x
ibm / informix_dynamic_server 9.40.uc1 9.40.uc1.x
ibm / informix_extended_parallel_server 8.40_uc2 8.40_uc2.x