CVE-2006-5663
https://notcve.org/view.php?id=CVE-2006-5663
IBM Informix Dynamic Server 10.00, Informix Client Software Development Kit (CSDK) 2.90, and Informix I-Connect 2.90 use insecure permissions for installation scripts, which allows local users to gain privileges by modifying the scripts. IBM Informix Dynamic Server 10.00, Informix Client Software Development Kit (CSDK) 2.90, y Informix I-Connect 2.90 utilizan permisos no seguros para los scripts de instalación, que permite a los usuarios locales obtener privilegios modificando estos scripts. • http://secunia.com/advisories/22609 http://securitytracker.com/id?1017156 http://www-1.ibm.com/support/docview.wss?uid=swg21247438 http://www.vupen.com/english/advisories/2006/4280 •
CVE-2006-5664
https://notcve.org/view.php?id=CVE-2006-5664
The installation script in IBM Informix Dynamic Server 10.00, Informix Client Software Development Kit (CSDK) 2.90, and Informix I-Connect 2.90 allows local users to "compromise security" via a symlink attack on temporary files. El script de instalación en IBM Informix Dynamic Server 10.00, Informix Client Software Development Kit (CSDK) 2.90, y Informix I-Connect 2.90 permite a los usuarios locales "comprometer la seguridad" mediante un ataque de enlaces simbólicos sobre ficheros temporales. • http://secunia.com/advisories/22609 http://securitytracker.com/id?1017156 http://www-1.ibm.com/support/docview.wss?uid=swg21247438 http://www.vupen.com/english/advisories/2006/4280 •