5

CVE-2007-6334

Ingres 2.5 and 2.6 on Windows, as used in multiple CA products and possibly other products, assigns the privileges and identity of users to be the same as the first user, which allows remote attackers to gain privileges.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
IngresIngres Version2.5
IngresIngres Version2.6
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 1.81% 0.759
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5 10 2.9
AV:N/AC:L/Au:N/C:P/I:N/A:N
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://secunia.com/advisories/28183
Patch
Vendor Advisory
http://secunia.com/advisories/28187
Patch
Vendor Advisory
http://supportconnectw.ca.com/public/ingres/infodocs/ingresmswin-secnot.asp
http://www.ingres.com/support/security-alertDec17.php
http://www.osvdb.org/39358
http://www.securityfocus.com/archive/1/485448/100/0/threaded
http://www.securityfocus.com/bid/26959
Patch
http://www.securitytracker.com/id?1019134
http://www.vupen.com/english/advisories/2007/4303
http://www.vupen.com/english/advisories/2007/4304