CVE-2005-3642

{"id": "CVE-2005-3642", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 7.5, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": true, "userInteractionRequired": false}]}, "published": "2005-11-16T21:22:00.000", "references": [{"url": "http://www.ngssoftware.com/papers/database-on-xp.pdf", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/15451", "source": "cve@mitre.org"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}], "descriptions": [{"lang": "en", "value": "IBM Informix Dynamic Database server running on Windows XP with Simple File Sharing enabled, allows remote attackers to bypass authentication and log on to the guest account by supplying an invalid username."}], "lastModified": "2008-09-05T20:54:53.370", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:ibm:informix_dynamic_database_server:9.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3C3FE6E0-7446-45C2-84DA-72C558F2F899"}, {"criteria": "cpe:2.3:a:ibm:informix_dynamic_database_server:9.40.uc1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "84A9BF3A-5DB9-4CB4-B7F7-848FFDF73D55"}, {"criteria": "cpe:2.3:a:ibm:informix_dynamic_database_server:9.40.uc2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DBC93597-82DD-486C-B277-DCBB45406A8C"}, {"criteria": "cpe:2.3:a:ibm:informix_dynamic_database_server:9.40.uc3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "28ED4E07-1195-4831-89A1-8E3F836B76E8"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}