CVE-2008-0368 — HIGH (7.2) — White Hats Nepal

Vulnerability Description

onedcu in IBM Informix Dynamic Server (IDS) 10.x before 10.00.xC8 allows local users to create arbitrary files via the Trace file argument.

CVSS Score

7.2

HIGH

AV:L/AC:L/Au:N/C:C/I:C/A:C

Confidentiality

COMPLETE

Integrity

COMPLETE

Availability

COMPLETE

Affected Products

Vendor	Product	Versions
Ibm	Informix Dynamic Server	10.0

References

http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=651
http://secunia.com/advisories/28534Vendor Advisory
http://www-1.ibm.com/support/docview.wss?uid=swg1IC54307
http://www-1.ibm.com/support/docview.wss?uid=swg27011556
http://www.securityfocus.com/bid/27328
http://www.securitytracker.com/id?1019237
http://www.vupen.com/english/advisories/2008/0169Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/39751
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=651
http://secunia.com/advisories/28534Vendor Advisory
http://www-1.ibm.com/support/docview.wss?uid=swg1IC54307
http://www-1.ibm.com/support/docview.wss?uid=swg27011556
http://www.securityfocus.com/bid/27328
http://www.securitytracker.com/id?1019237
http://www.vupen.com/english/advisories/2008/0169Vendor Advisory

FAQ

What is CVE-2008-0368?

CVE-2008-0368 is a vulnerability with a CVSS score of 7.2 (HIGH). onedcu in IBM Informix Dynamic Server (IDS) 10.x before 10.00.xC8 allows local users to create arbitrary files via the Trace file argument.

How severe is CVE-2008-0368?

CVE-2008-0368 has been rated HIGH with a CVSS base score of 7.2/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2008-0368?

Check the references section above for vendor advisories and patch information. Affected products include: Ibm Informix Dynamic Server.