9 matches found
EUVD-2003-0491
Malware in sbrugna...
EUVD-2003-0492
Malware in sbrugna...
CVE-2003-0497
Caché Database 5.x installs /cachesys/bin/cache with world-writable permissions, which allows local users to gain privileges by modifying cache and executing it via cuxs...
CVE-2003-0498
Caché Database 5.x installs the /cachesys/csp directory with insecure permissions, which allows local users to execute arbitrary code by adding server-side scripts that are executed with root privileges...
CVE-2003-0497
Caché Database 5.x installs /cachesys/bin/cache with world-writable permissions, which allows local users to gain privileges by modifying cache and executing it via cuxs...
CVE-2003-0498
Caché Database 5.x installs the /cachesys/csp directory with insecure permissions, which allows local users to execute arbitrary code by adding server-side scripts that are executed with root privileges...
CVE-2003-0497
CVE-2003-0497 affects InterSystems Caché Database 5.x. The vulnerability arises because /cachesys/bin/cache (and related paths) are installed with world-writable permissions, enabling local attackers to gain privilege by overwriting a cache component and executing it via /cachesys/bin/cuxs. The i...
CVE-2003-0498
CVE-2003-0498 affects InterSystems Caché Database 5.x. The vulnerability arises because /cachesys/csp is installed with insecure permissions, allowing local attackers to add server-side scripts or modify files that run with root privileges, enabling arbitrary code execution. The issue is document...
intersystems.txt
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 iDEFENSE Security Advisory 07.01.03: http://www.idefense.com/advisory/07.01.03.txt Caché Insecure Installation File and Directory Permissions July 1, 2003 I. BACKGROUND InterSystems Corp.s Caché is a post-relational database for e-applications that i...