CVE-2007-5956Path Traversal in IBM Informix Dynamic Server

CWE-22Path Traversal3 documents3 sources
Severity
7.2HIGHNVD
EPSS
0.0%
top 91.86%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
IBM Informix Dynamic Server
Timeline
PublishedNov 14
Latest updateMay 1

Description

Directory traversal vulnerability in IBM Informix Dynamic Server (IDS) before 10.00.xC7W1 allows local users to gain privileges by referencing modified NLS message files through directory traversal sequences in the DBLANG environment variable.

CVSS vector

AV:L/AC:L/C:C/I:C/A:CExploitability: 3.9 | Impact: 10.0

Affected Packages1 packages

Patches

Patch: secunia.comPatch: www-1.ibm.comPatch: secunia.com

🔴Vulnerability Details

2
GHSA
GHSA-g3mf-xpqx-5mqg: Directory traversal vulnerability in IBM Informix Dynamic Server (IDS) before 102022-05-01
CVEList
CVE-2007-5956: Directory traversal vulnerability in IBM Informix Dynamic Server (IDS) before 102007-11-14
CVE-2007-5956 — Path Traversal in IBM | cvebase