CVE-2008-3357

Severity Score

7.2

*CVSS v2

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

Untrusted search path vulnerability in ingvalidpw in Ingres 2.6, Ingres 2006 release 1 (aka 9.0.4), and Ingres 2006 release 2 (aka 9.1.0) on Linux and HP-UX allows local users to gain privileges via a crafted shared library, related to a "pointer overwrite vulnerability."

Vulnerabilidad de búsqueda de ruta no confiable en ingvalidpw en Ingres 2.6, Ingres 2006 versión 1 (alias 9.0.4), y Ingres 2006 versión 2 (alias 9.1.0) en Linux y HP-UX, que permite a los usuarios locales aumentar privilegios a través de una librería compartida manipulada, relativo a una "vulnerabilidad de sobreescritura de puntero"

*Credits: N/A

CVSS Scores

NISTv2 7.2

Attack Vector

Local

Attack Complexity

Low

Authentication

None

Confidentiality

Complete

Integrity

Complete

Availability

Complete

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2008-07-28 CVE Reserved
2008-08-04 CVE Published
2023-03-08 EPSS Updated
2024-08-07 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CWE-426: Untrusted Search Path

CAPEC

References (11)

URL	Tag	Source
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=733	Broken Link
http://secunia.com/advisories/31357	Third Party Advisory
http://secunia.com/advisories/31398	Third Party Advisory
http://securitytracker.com/id?1020614	Third Party Advisory
http://www.securityfocus.com/archive/1/495177/100/0/threaded	Mailing List
http://www.securityfocus.com/bid/30512	Third Party Advisory
http://www.vupen.com/english/advisories/2008/2292	Third Party Advisory
http://www.vupen.com/english/advisories/2008/2313	Third Party Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/44181	Third Party Advisory
https://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=181989	Broken Link

URL	Date	SRC

URL	Date	SRC

URL	Date	SRC
http://www.ingres.com/support/security-alert-080108.php	2020-09-28

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Actian Search vendor "Actian"	Ingres Search vendor "Actian" for product "Ingres"	2.6 Search vendor "Actian" for product "Ingres" and version "2.6"	-	Affected	in	Hp Search vendor "Hp"	Hp-ux Search vendor "Hp" for product "Hp-ux"	-	-	Safe
Actian Search vendor "Actian"	Ingres Search vendor "Actian" for product "Ingres"	2.6 Search vendor "Actian" for product "Ingres" and version "2.6"	-	Affected	in	Linux Search vendor "Linux"	Linux Kernel Search vendor "Linux" for product "Linux Kernel"	-	-	Safe
Actian Search vendor "Actian"	Ingres Search vendor "Actian" for product "Ingres"	9.0.4 Search vendor "Actian" for product "Ingres" and version "9.0.4"	-	Affected	in	Hp Search vendor "Hp"	Hp-ux Search vendor "Hp" for product "Hp-ux"	-	-	Safe
Actian Search vendor "Actian"	Ingres Search vendor "Actian" for product "Ingres"	9.0.4 Search vendor "Actian" for product "Ingres" and version "9.0.4"	-	Affected	in	Linux Search vendor "Linux"	Linux Kernel Search vendor "Linux" for product "Linux Kernel"	-	-	Safe
Actian Search vendor "Actian"	Ingres Search vendor "Actian" for product "Ingres"	9.1.0 Search vendor "Actian" for product "Ingres" and version "9.1.0"	-	Affected	in	Hp Search vendor "Hp"	Hp-ux Search vendor "Hp" for product "Hp-ux"	-	-	Safe
Actian Search vendor "Actian"	Ingres Search vendor "Actian" for product "Ingres"	9.1.0 Search vendor "Actian" for product "Ingres" and version "9.1.0"	-	Affected	in	Linux Search vendor "Linux"	Linux Kernel Search vendor "Linux" for product "Linux Kernel"	-	-	Safe