CVE-2006-5663

Sažetak

IBM Informix Dynamic Server 10.00, Informix Client Software Development Kit (CSDK) 2.90, and Informix I-Connect 2.90 use insecure permissions for installation scripts, which allows local users to gain privileges by modifying the scripts.

Reference

http://secunia.com/advisories/22609
http://securitytracker.com/id?1017156
http://www.vupen.com/english/advisories/2006/4280
http://www-1.ibm.com/support/docview.wss?uid=swg21247438

CVSS

Base:	4.6
Impact:	6.4
Exploitability:	3.9

Pristup

Vektor	Složenost	Autentikacija
LOCAL	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	PARTIAL	PARTIAL

CVSS vektor

AV:L/AC:L/Au:N/C:P/I:P/A:P

Zadnje važnije ažuriranje

08-03-2011 - 02:43

Objavljeno

03-11-2006 - 01:07