5
CVE-2007-6334
- EPSS 1.81%
- Veröffentlicht 20.12.2007 23:46:00
- Zuletzt bearbeitet 16.06.2026 22:47:51
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
Ingres 2.5 and 2.6 on Windows, as used in multiple CA products and possibly other products, assigns the privileges and identity of users to be the same as the first user, which allows remote attackers to gain privileges.
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.81% | 0.759 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5 | 10 | 2.9 |
AV:N/AC:L/Au:N/C:P/I:N/A:N
|
http://secunia.com/advisories/28183
http://secunia.com/advisories/28187
http://supportconnectw.ca.com/public/ingres/infodocs/ingresmswin-secnot.asp
http://www.ingres.com/support/security-alertDec17.php
http://www.osvdb.org/39358
http://www.securityfocus.com/archive/1/485448/100/0/threaded
http://www.securityfocus.com/bid/26959
http://www.securitytracker.com/id?1019134
http://www.vupen.com/english/advisories/2007/4303
http://www.vupen.com/english/advisories/2007/4304