CVE-2006-3862

Buffer overflow in IBM Informix Dynamic Server (IDS) 9.40.TC5 through 9.40.xC7 and 10.00.TC1 through 10.00.xC3 allows attackers to execute arbitrary code via the SQLIDEBUG environment variable (envariable).

CVSS v2.0 7.5 HIGH

7.5^/10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability : 10.0 / Impact : 6.4

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References

Link	Resource
http://secunia.com/advisories/21301
http://www-1.ibm.com/support/docview.wss?uid=swg21242921	Patch
http://www.databasesecurity.com/informix/DatabaseHackersHandbook-AttackingInformix.pdf
http://www.osvdb.org/27694
http://www.securityfocus.com/archive/1/443133/100/0/threaded
http://www.securityfocus.com/archive/1/443165/100/0/threaded
http://www.securityfocus.com/bid/19264
http://www.vupen.com/english/advisories/2006/3077
https://exchange.xforce.ibmcloud.com/vulnerabilities/28158
http://secunia.com/advisories/21301
http://www-1.ibm.com/support/docview.wss?uid=swg21242921	Patch
http://www.databasesecurity.com/informix/DatabaseHackersHandbook-AttackingInformix.pdf
http://www.osvdb.org/27694
http://www.securityfocus.com/archive/1/443133/100/0/threaded
http://www.securityfocus.com/archive/1/443165/100/0/threaded
http://www.securityfocus.com/bid/19264
http://www.vupen.com/english/advisories/2006/3077
https://exchange.xforce.ibmcloud.com/vulnerabilities/28158

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:ibm:informix_dynamic_server:9.40.tc5:::::::*
	cpe:2.3:a:ibm:informix_dynamic_server:9.40.uc5:::::::*
	cpe:2.3:a:ibm:informix_dynamic_server:9.40.xc5:::::::*
	cpe:2.3:a:ibm:informix_dynamic_server:10.0.tc1:::::::*
	cpe:2.3:a:ibm:informix_dynamic_server:10.0.xc1:::::::*

History

21 Nov 2024, 00:14

Type	Values Removed	Values Added
References	~~() http://secunia.com/advisories/21301 -~~	() http://secunia.com/advisories/21301 -
References	~~() http://www-1.ibm.com/support/docview.wss?uid=swg21242921 - Patch~~	() http://www-1.ibm.com/support/docview.wss?uid=swg21242921 - Patch
References	~~() http://www.databasesecurity.com/informix/DatabaseHackersHandbook-AttackingInformix.pdf -~~	() http://www.databasesecurity.com/informix/DatabaseHackersHandbook-AttackingInformix.pdf -
References	~~() http://www.osvdb.org/27694 -~~	() http://www.osvdb.org/27694 -
References	~~() http://www.securityfocus.com/archive/1/443133/100/0/threaded -~~	() http://www.securityfocus.com/archive/1/443133/100/0/threaded -
References	~~() http://www.securityfocus.com/archive/1/443165/100/0/threaded -~~	() http://www.securityfocus.com/archive/1/443165/100/0/threaded -
References	~~() http://www.securityfocus.com/bid/19264 -~~	() http://www.securityfocus.com/bid/19264 -
References	~~() http://www.vupen.com/english/advisories/2006/3077 -~~	() http://www.vupen.com/english/advisories/2006/3077 -
References	~~() https://exchange.xforce.ibmcloud.com/vulnerabilities/28158 -~~	() https://exchange.xforce.ibmcloud.com/vulnerabilities/28158 -

Information

Published : 2006-08-08 22:04

Updated : 2025-04-03 01:03

NVD link : CVE-2006-3862

Mitre link : CVE-2006-3862

CVE.ORG link : CVE-2006-3862

JSON object : View

Products Affected

ibm

informix_dynamic_server

CWE

NVD-CWE-Other

{"id": "CVE-2006-3862", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 7.5, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": true, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2006-08-08T22:04:00.000", "references": [{"url": "http://secunia.com/advisories/21301", "source": "cve@mitre.org"}, {"url": "http://www-1.ibm.com/support/docview.wss?uid=swg21242921", "tags": ["Patch"], "source": "cve@mitre.org"}, {"url": "http://www.databasesecurity.com/informix/DatabaseHackersHandbook-AttackingInformix.pdf", "source": "cve@mitre.org"}, {"url": "http://www.osvdb.org/27694", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/archive/1/443133/100/0/threaded", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/archive/1/443165/100/0/threaded", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/19264", "source": "cve@mitre.org"}, {"url": "http://www.vupen.com/english/advisories/2006/3077", "source": "cve@mitre.org"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/28158", "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/21301", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www-1.ibm.com/support/docview.wss?uid=swg21242921", "tags": ["Patch"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.databasesecurity.com/informix/DatabaseHackersHandbook-AttackingInformix.pdf", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.osvdb.org/27694", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securityfocus.com/archive/1/443133/100/0/threaded", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securityfocus.com/archive/1/443165/100/0/threaded", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securityfocus.com/bid/19264", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.vupen.com/english/advisories/2006/3077", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/28158", "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Deferred", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}], "descriptions": [{"lang": "en", "value": "Buffer overflow in IBM Informix Dynamic Server (IDS) 9.40.TC5 through 9.40.xC7 and 10.00.TC1 through 10.00.xC3 allows attackers to execute arbitrary code via the SQLIDEBUG environment variable (envariable)."}, {"lang": "es", "value": "Desbordamiento de b\u00fafer en IBM Informix Dynamic Server (IDS) 9.40.TC5 hasta 9.40.xC7 y 10.00.TC1 hasta 10.00.xC3 permite a atacantes remotos ejecutar c\u00f3digo de su elecci\u00f3n a trav\u00e9s de la variable de entorno (envariable) SQLIDEBUG."}], "lastModified": "2025-04-03T01:03:51.193", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:ibm:informix_dynamic_server:9.40.tc5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CE9B0C17-2D85-4729-85EF-2F5C750BF51B"}, {"criteria": "cpe:2.3:a:ibm:informix_dynamic_server:9.40.uc5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E64D85E2-AA7E-4704-A2FA-BD69744423CF"}, {"criteria": "cpe:2.3:a:ibm:informix_dynamic_server:9.40.xc5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "21FF7CE7-A061-425B-A29B-1EC6DEDA2C10"}, {"criteria": "cpe:2.3:a:ibm:informix_dynamic_server:10.0.tc1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DEEBB378-F57A-4420-973F-8B641700740A"}, {"criteria": "cpe:2.3:a:ibm:informix_dynamic_server:10.0.xc1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5634CF97-CBD3-4CA3-8144-2F875FDD3FA4"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org", "evaluatorSolution": "This vulnerability is addressed in the following product releases:\r\nIBM, Informix IDS, 9.40 xC7 \r\nIBM, Informix IDS, 10.00 xC3"}

7.5 /10