CVE-2006-2547

Опубликовано: 23 мая 2006

Источник: nvd

CVSS2: 10

EPSS Низкий

Описание

Unspecified vulnerability in the sapdba command in SAP with Informix before 700, and 700 up to patch 100, allows local users to execute arbitrary commands via unknown vectors related to "insecure environment variable" handling.

Ссылки

http://lists.grok.org.uk/pipermail/full-disclosure/2006-May/046130.html
Patch
http://secunia.com/advisories/20180
Vendor Advisory
http://securityreason.com/securityalert/941
http://securitytracker.com/id?1016122
http://www.cybsec.com/vuln/CYBSEC_Security_Pre-Advisory_Local_Privilege_Escalation_in_SAP_sapdba_Command.pdf
Patch
http://www.securityfocus.com/archive/1/434534/30/4890/threaded
http://www.securityfocus.com/bid/18028
http://www.vupen.com/english/advisories/2006/1861
https://exchange.xforce.ibmcloud.com/vulnerabilities/26526
http://lists.grok.org.uk/pipermail/full-disclosure/2006-May/046130.html
Patch
http://secunia.com/advisories/20180
Vendor Advisory
http://securityreason.com/securityalert/941
http://securitytracker.com/id?1016122
http://www.cybsec.com/vuln/CYBSEC_Security_Pre-Advisory_Local_Privilege_Escalation_in_SAP_sapdba_Command.pdf
Patch
http://www.securityfocus.com/archive/1/434534/30/4890/threaded
http://www.securityfocus.com/bid/18028
http://www.vupen.com/english/advisories/2006/1861
https://exchange.xforce.ibmcloud.com/vulnerabilities/26526

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:sap:sapdba:*:*:*:*:*:*:*:*

EPSS

Процентиль: 81%

0.01521

Низкий

10 Critical

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-hq2w-ggp5-cvj4

github

почти 4 года назад