CVE-2004-2489
published 2004-12-31CVE-2004-2489: Format string vulnerability in IBM Informix Dynamic Server (IDS) before 9.40.xC3 allows local users to execute arbitrary code via a modified INFORMIXDIR…
medium4.6CVSS 3.1
AVLACLAuNCPIPAP
Format string vulnerability in IBM Informix Dynamic Server (IDS) before 9.40.xC3 allows local users to execute arbitrary code via a modified INFORMIXDIR environment variable that points to a file with format string specifiers in the filename.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| ibm | informix_dynamic_server | — | — |
| ibm | informix_dynamic_server | — | — |