CVE-2016-0226
First published: Mon Mar 28 2016(Updated: )
The client implementation in IBM Informix Dynamic Server 11.70.xCn on Windows does not properly restrict access to the (1) nsrd, (2) nsrexecd, and (3) portmap executable files, which allows local users to gain privileges via a Trojan horse file.
Credit: psirt@us.ibm.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| IBM Informix Dynamic Server | =11.70.xcn | |
| Microsoft Windows |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2016-0226?
CVE-2016-0226 is considered a high severity vulnerability due to its ability to allow local users to gain elevated privileges.
How do I fix CVE-2016-0226?
To fix CVE-2016-0226, ensure that proper access controls are implemented on the nsrd, nsrexecd, and portmap executable files.
Who is affected by CVE-2016-0226?
CVE-2016-0226 affects users of IBM Informix Dynamic Server version 11.70.xCn running on Windows.
Can CVE-2016-0226 be exploited remotely?
CVE-2016-0226 cannot be exploited remotely as it requires local access to the system.
What types of exploits are possible with CVE-2016-0226?
Exploiting CVE-2016-0226 can allow local users to execute Trojan horse files to gain unauthorized privileges.
- collector/nvd-index
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/references
- agent/author
- agent/remedy
- agent/last-modified-date
- agent/weakness
- agent/description
- agent/tags
- agent/event
- agent/first-publish-date
- agent/source
- vendor/ibm
- canonical/ibm informix dynamic server
- version/ibm informix dynamic server/11.70.xcn
- vendor/microsoft
- canonical/microsoft windows