CVE-2007-3334
Ingress Database Server 2.6 - Multiple Remote Vulnerabilities
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
1Exploited in Wild
-Decision
Descriptions
Multiple heap-based buffer overflows in the (1) Communications Server (iigcc.exe) and (2) Data Access Server (iigcd.exe) components for Ingres Database Server 3.0.3, as used in CA (Computer Associates) products including eTrust Secure Content Manager r8 on Windows, allow remote attackers to execute arbitrary code via unknown vectors.
Múltiples desbordamientos de búfer basados en montículo en los componentes (1) Communications Server (iigcc.exe) y (2) Data Access Server (iigcd.exe) para el Ingres Database Server 3.0.3, como el utilizado en los productos del CA (Computer Associates) incluyendo el eTrust Secure Content Manager r8 bajo Windows, permiten a atacantes remotos ejecutar código de su elección a través de vectores sin especificar.
Computer Associates Advantage Ingres version 2.6 suffers from multiple denial of service vulnerabilities.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2007-06-21 CVE Reserved
- 2007-06-21 CVE Published
- 2007-06-21 First Exploit
- 2024-03-17 EPSS Updated
- 2024-08-07 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
CAPEC
References (15)
URL | Tag | Source |
---|---|---|
http://osvdb.org/37487 | Vdb Entry | |
http://osvdb.org/37488 | Vdb Entry | |
http://secunia.com/advisories/25756 | Third Party Advisory | |
http://secunia.com/advisories/25775 | Third Party Advisory | |
http://supportconnectw.ca.com/public/ca_common_docs/ingresvuln_letter.asp | X_refsource_confirm | |
http://www.ca.com/us/securityadvisor/newsinfo/collateral.aspx?cid=145778 | X_refsource_confirm | |
http://www.securityfocus.com/bid/24585 | Vdb Entry | |
http://www.securitytracker.com/id?1018278 | Vdb Entry | |
http://www.vupen.com/english/advisories/2007/2288 | Vdb Entry | |
http://www.vupen.com/english/advisories/2007/2290 | Vdb Entry | |
https://exchange.xforce.ibmcloud.com/vulnerabilities/34991 | Vdb Entry | |
https://exchange.xforce.ibmcloud.com/vulnerabilities/34992 | Vdb Entry | |
https://exchange.xforce.ibmcloud.com/vulnerabilities/35002 | Vdb Entry |
URL | Date | SRC |
---|---|---|
https://www.exploit-db.com/exploits/30224 | 2007-06-21 |
URL | Date | SRC |
---|---|---|
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=546 | 2017-07-29 |
URL | Date | SRC |
---|
Affected Vendors, Products, and Versions
Vendor | Product | Version | Other | Status | ||||||
---|---|---|---|---|---|---|---|---|---|---|
Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
Ca Search vendor "Ca" | Etrust Secure Content Manager Search vendor "Ca" for product "Etrust Secure Content Manager" | 8.0 Search vendor "Ca" for product "Etrust Secure Content Manager" and version "8.0" | - |
Affected
| in | Microsoft Search vendor "Microsoft" | All Windows Search vendor "Microsoft" for product "All Windows" | * | - |
Safe
|
Ingres Search vendor "Ingres" | Database Server Search vendor "Ingres" for product "Database Server" | 3.0.3 Search vendor "Ingres" for product "Database Server" and version "3.0.3" | - |
Affected
| in | Microsoft Search vendor "Microsoft" | All Windows Search vendor "Microsoft" for product "All Windows" | * | - |
Safe
|