CVE-2004-2319

N/A Unknown

Published: December 31, 2004 Modified: April 16, 2026

Description

IBM Informix Dynamic Server (IDS) before 9.40.xC3 allows local users to (1) create or overwrite files via the /001 log file to onedcu or (2) read arbitrary files via a symlink attack on a file in /tmp to onshowaudit.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://secunia.com/advisories/10737/

Source: cve@mitre.org

Patch Vendor Advisory

http://www-1.ibm.com/support/docview.wss?uid=swg21153336

Source: cve@mitre.org

http://www.osvdb.org/3758

Source: cve@mitre.org

http://www.osvdb.org/3760

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/351770

Source: cve@mitre.org

Exploit Vendor Advisory

http://www.securityfocus.com/bid/9511

Source: cve@mitre.org

Patch

http://www.securityfocus.com/bid/9512

Source: cve@mitre.org

Exploit Patch

https://exchange.xforce.ibmcloud.com/vulnerabilities/14969

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/14971

Source: cve@mitre.org

http://secunia.com/advisories/10737/