Vulnerabilities > CVE-2005-3642 - Authentication Bypass vulnerability in IBM Informix Dynamic Server Windows XP Simple File Sharing

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

low complexity

ibm

NVD

Published: 2005-11-16

Updated: 2008-09-05

Summary

IBM Informix Dynamic Database server running on Windows XP with Simple File Sharing enabled, allows remote attackers to bypass authentication and log on to the guest account by supplying an invalid username.

Vulnerable Configurations

Part	Description	Count
Application	Ibm IBM Informix Dynamic Database Server 9.3 IBM Informix Dynamic Database Server 9.40.Uc1 IBM Informix Dynamic Database Server 9.40.Uc2 IBM Informix Dynamic Database Server 9.40.Uc3	4

References

http://www.ngssoftware.com/papers/database-on-xp.pdf
http://www.securityfocus.com/bid/15451