Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-2547

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2006-2547
Last Modified 07 Mar 2011 09:36:29
Published 23 May 2006 06:06:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2006-2547

Summary

Unspecified vulnerability in the sapdba command in SAP with Informix before 700, and 700 up to patch 100, allows local users to execute arbitrary commands via unknown vectors related to "insecure environment variable" handling.

Vulnerable Systems

Application

  • Sapdba


References

XF - sap-sapdba-privilege-escalation(26526)

MISC - http://www.cybsec.com/vuln/CYBSEC_Security_Pre-Advisory_Local_Privilege_Escalation_in_SAP_sapdba_Command.pdf

FULLDISC - 20060518 CYBSEC - Security Pre-Advisory: Local Privilege Escalation in SAP sapdba Command

VUPEN - ADV-2006-1861

BID - 18028

SECTRACK - 1016122

SECUNIA - 20180

BUGTRAQ - 20060519 CYBSEC - Security Pre-Advisory: Local Privilege Escalation in SAPsapdba Command

SREASON - 941


Last Updated: 27 May 2016 10:42:40