3 matches found
CA Products That Embed Ingres Multiple Vulnerabilities
Title: CA Products That Embed Ingres Multiple Vulnerabilities CA Advisory Date: 2008-08-01 Reported By: iDefense Labs Impact: A remote attacker can execute arbitrary code, gain privileges, or cause a denial of service condition. Summary: CA products that embed Ingres contain multiple...
CVE-2008-3389
CVE-2008-3389 describes a stack-based buffer overflow in Ingres libbecompat that can let a local user gain privileges by supplying a long environment variable value before running verifydb, iimerge, or csreport on Linux and HP-UX. Affected runtimes include Ingres 2.6, Ingres 2006 release 1 (9.0.4...
iDefense Security Advisory 08.01.08: Ingres Database for Linux libbecompat Stack Based Buffer Overflow Vulnerability
iDefense Security Advisory 08.01.08 http://labs.idefense.com/intelligence/vulnerabilities/ Aug 01, 2008 I. BACKGROUND Ingres Database is a database server used in several Computer Associates' products. For example, CA Directory Service use thes Ingres Database server. More information can be foun...