IBM Informix Dynamic Server (IDS) prior to 9.40.xC7 and 10.00 prior to 10.00.xC3 does not use database creation permissions, which allows remote authenticated users to create arbitrary databases.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ibm informix dynamic server 9.4 |
||
ibm informix dynamic server 9.40.tc5 |
||
ibm informix dynamic server 9.40.uc1 |
||
ibm informix dynamic server 9.40.uc2 |
||
ibm informix dynamic server 10.0.xc1 |
||
ibm informix dynamic server 7.31 |
||
ibm informix dynamic server 9.40.xc5 |
||
ibm informix dynamic server 10.0 |
||
ibm informix dynamic server 9.40.uc3 |
||
ibm informix dynamic server 9.40.uc5 |