CVSS: 4.6EPSS: 0%CPEs: 5EXPL: 0CVE-2008-3389
https://notcve.org/view.php?id=CVE-2008-3389
Stack-based buffer overflow in the libbecompat library in Ingres 2.6, Ingres 2006 release 1 (aka 9.0.4), and Ingres 2006 release 2 (aka 9.1.0) on Linux and HP-UX allows local users to gain privileges by setting a long value of an environment variable before running (1) verifydb, (2) iimerge, or (3) csreport. Desbordamiento de búfer basado en pila en la librería libbecompat en Ingres 2.6, Ingres 2006 versión 1 (alias 9.0.4), y Ingres 2006 versión 2 (alias 9.1.0) en Linux y HP-UX que permite a los usuarios locales aumentar sus privilegios estableciendo un valor largo de una variable de entorno antes de ejecutar (1) verifydb, (2) iimerge, or (3) csreport. • http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=732 http://secunia.com/advisories/31357 http://secunia.com/advisories/31398 http://securitytracker.com/id?1020615 http://www.ingres.com/support/security-alert-080108.php http://www.securityfocus.com/archive/1/495177/100/0/threaded http://www.securityfocus.com/bid/30512 http://www.vupen.com/english/advisories/2008/2292 http://www.vupen.com/english/advisories/2008/2313 https://exchange.xforce.ibmcloud.com/vulnerabiliti • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 4.6EPSS: 0%CPEs: 5EXPL: 0CVE-2008-3356
https://notcve.org/view.php?id=CVE-2008-3356
verifydb in Ingres 2.6, Ingres 2006 release 1 (aka 9.0.4), and Ingres 2006 release 2 (aka 9.1.0) on Linux and other Unix platforms sets the ownership or permissions of an iivdb.log file without verifying that it is the application's own log file, which allows local users to overwrite arbitrary files by creating a symlink with an iivdb.log filename. verifydb en Ingres 2.6, Ingres 2006 versión 1 (alias 9.0.4), y Ingres 2006 versión 2 (alias 9.1.0) en Linux y otras plataformas Unix que establece la propiedad o permisos del archivo iivdb.log, sin verificar que es el archivo log propio de la aplicación, lo que permite a los usuarios sobrescribir arbitrariamente archivos creando un enlace simbólico con un nombre de archivo iivdb.log. • http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=731 http://secunia.com/advisories/31357 http://secunia.com/advisories/31398 http://securitytracker.com/id?1020613 http://www.ingres.com/support/security-alert-080108.php http://www.securityfocus.com/archive/1/495177/100/0/threaded http://www.securityfocus.com/bid/30512 http://www.vupen.com/english/advisories/2008/2292 http://www.vupen.com/english/advisories/2008/2313 https://exchange.xforce.ibmcloud.com/vulnerabiliti • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 5.0EPSS: 0%CPEs: 3EXPL: 0CVE-2007-6334
https://notcve.org/view.php?id=CVE-2007-6334
Ingres 2.5 and 2.6 on Windows, as used in multiple CA products and possibly other products, assigns the privileges and identity of users to be the same as the first user, which allows remote attackers to gain privileges. Ingres 2.5 y 2.6 para Windows, usados en múltiples productos CA y posiblemente otros, asigna los privilegios y la identidad de los usuarios para que sean la misma que el primer usuario, lo cual permite a atacantes remotos obtener privilegios. • http://secunia.com/advisories/28183 http://secunia.com/advisories/28187 http://supportconnectw.ca.com/public/ingres/infodocs/ingresmswin-secnot.asp http://www.ingres.com/support/security-alertDec17.php http://www.osvdb.org/39358 http://www.securityfocus.com/archive/1/485448/100/0/threaded http://www.securityfocus.com/bid/26959 http://www.securitytracker.com/id?1019134 http://www.vupen.com/english/advisories/2007/4303 http://www.vupen.com/english/advisories/2007/4304 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 10.0EPSS: 78%CPEs: 4EXPL: 1CVE-2007-3336 – CA Advantage Ingres 2.6 - Multiple Buffer Overflow Vulnerabilities (PoC)
https://notcve.org/view.php?id=CVE-2007-3336
Multiple "pointer overwrite" vulnerabilities in Ingres database server 2006 9.0.4, r3, 2.6, and 2.5, as used in multiple CA (formerly Computer Associates) products, allow remote attackers to execute arbitrary code by sending certain TCP data at different times to the Ingres Communications Server Process (iigcc), which calls the (1) QUinsert or (2) QUremove functions with attacker-controlled input. Múltiples vulnerabilidades "pointer overwrite" en Ingres database server 2006 versiones 9.0.4, r3, 2.6 y 2.5, tal como se usa en varios productos de CA (anteriormente Computer Associates), permiten a los atacantes remotos ejecutar código arbitrario mediante el envío de ciertos datos TCP en diferentes momentos hacia Ingres Communications Server Process (iigcc), que llama a las funciones (1) QUinsert o (2) QUremove con entrada controlada por el atacante. Computer Associates Advantage Ingres version 2.6 suffers from multiple denial of service vulnerabilities. • https://www.exploit-db.com/exploits/14646 http://archives.neohapsis.com/archives/bugtraq/2007-06/0302.html http://osvdb.org/37486 http://secunia.com/advisories/25756 http://secunia.com/advisories/25775 http://supportconnectw.ca.com/public/ca_common_docs/ingresvuln_letter.asp http://www.ca.com/us/securityadvisor/newsinfo/collateral.aspx?cid=145778 http://www.ngssoftware.com/advisories/critical-risk-vulnerability-in-ingres-pointer-overwrite-1 http://www.ngssoftware.com/advisories/critical-risk- •
CVSS: 2.1EPSS: 0%CPEs: 4EXPL: 0CVE-2007-3337 – Computer Associates Advantage Ingres 2.6 Denial Of Service
https://notcve.org/view.php?id=CVE-2007-3337
wakeup in Ingres database server 2006 9.0.4, r3, 2.6, and 2.5, as used in multiple CA (Computer Associates) products, allows local users to truncate arbitrary files via a symlink attack on the alarmwkp.def file. El inicio (wakeup) en la base de datos Ingres server 2006 9.0.4, r3, 2.6 y 2.5, tal y como se usa en los productos CA (Computer Associates), permite a usuarios locales truncar ficheros de su elección mediante un ataque symlink (de enlaces simbólicos) en el fichero alarmwkp.def. Computer Associates Advantage Ingres version 2.6 suffers from multiple denial of service vulnerabilities. • http://osvdb.org/37485 http://secunia.com/advisories/25756 http://secunia.com/advisories/25775 http://supportconnectw.ca.com/public/ca_common_docs/ingresvuln_letter.asp http://www.ca.com/us/securityadvisor/newsinfo/collateral.aspx?cid=145778 http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=35451 http://www.ngssoftware.com/advisories/medium-risk-vulnerability-in-ingres-file-truncation http://www.securityfocus.com/archive/1/472200/100/0/threaded http://www.securityfocus.com/bid&#x •