31 matches found
EUVD-2008-3343
Malware in sbrugna...
EUVD-2007-3327
Malware in sbrugna...
Ingres Database Communications Server Component Heap Buffer Overflow - Ver2 (CVE-2007-3334)
Ingres developed a relational database product named Ingres Database. Ingres Database is made available for both Windows and Unix-like platforms. The product is embedded by other software vendors such as Computer Associates CA. A heap buffer overflow vulnerability exists in Ingres Database...
Ingres Database 9.3 Heap Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/38001/info Ingres Database is prone to a heap-based buffer-overflow vulnerability because the application fails to perform adequate boundary checks on user-supplied data. Attackers can exploit this issue to execute...
Ingres Database iidbms Heap Overflow - ver 2
Ingres Database is a relational database product available for both Windows and Unix-like platforms. A vulnerability has been reported in Ingres Database that could be exploited by remote attackers to compromise a vulnerable system. The vulnerability is due to insufficient boundary checking in th...
Ingres Database Communications Server Component Heap Buffer Overflow (CVE-2007-3334)
Ingres developed a relational database product named Ingres Database. Ingres Database is made available for both Windows and Unix-like platforms. The product is embedded by other software vendors such as Computer Associates CA. A heap buffer overflow vulnerability exists in Ingres Database...
Ingres Database iidbms Heap Overflow
Ingres Database is a relational database product available for both Windows and Unix-like platforms. A vulnerability has been reported in Ingres Database that could be exploited by remote attackers to compromise a vulnerable system. The vulnerability is due to insufficient boundary checking in th...
Ingres Database 9.3 - Heap Buffer Overflow
Ingres Database 9.3 - Heap Buffer Overflow source: https://www.securityfocus.com/bid/38001/info Ingres Database is prone to a heap-based buffer-overflow vulnerability because the application fails to perform adequate boundary checks on user-supplied data. Attackers can exploit this issue to execu...
Ingres Database Detection
This host is running Ingres Database. Ingres Database is an open source database management system. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...
Ingres Database Detection
This host is running Ingres Database. Ingres Database is an open source database management system. OpenVAS Vulnerability Test $Id: ingresdbdetect.nasl 5505 2017-03-07 10:00:18Z teissa $ Ingres Database Detection Authors: Michael Meyer Copyright: Copyright c 2010 Greenbone Networks GmbH This...
Ingres Database 9.3 - Heap Buffer Overflow
source: https://www.securityfocus.com/bid/38001/info Ingres Database is prone to a heap-based buffer-overflow vulnerability because the application fails to perform adequate boundary checks on user-supplied data. Attackers can exploit this issue to execute arbitrary code with the privileges of th...
Ingres Database uuid_from_char Stack Buffer Overflow (CVE-2007-3338)
Ingres Database is a relational DataBase Management System DBMS product developed by Ingres. Ingres Database is made available for both Windows and Unix-like platforms. The product is embedded by other software vendors, such as Computer Associates CA in its eTrust and Unicenter products. A stack...
Ingres Database Multiple Local Vulnerabilities
Binary data 4615.prm...
iDefense Security Advisory 08.01.08: Ingres Database for Linux verifydb Insecure File Permissions Modification Vulnerability
iDefense Security Advisory 08.01.08 http://labs.idefense.com/intelligence/vulnerabilities/ Aug 01, 2008 I. BACKGROUND Ingres Database is a database server used in several Computer Associates' products. For example, CA Directory Service uses the Ingres Database server. More information can be foun...
Ingres数据库多个本地安全漏洞
BUGTRAQ ID: 30512 CVECAN ID: CVE-2008-3357,CVE-2008-3389,CVE-2008-3356 Ingres是很多CA产品默认所使用的数据库后端。 Ingres数据库中所捆绑的ingvalidpw工具用于验证用户凭据。在加载共享库时,ingvalidpw程序会加载ingres用户目录中的库,因此拥有ingres权限的用户可以通过特制的库获得root权限。 Ingres数据库所捆绑的一些ingres工具会使用libbecompat库。在将环境变量拷贝到固定大小的栈缓冲区时,该库没有对源字符串执行长度检查,导致栈溢出漏洞。...
iDefense Security Advisory 08.01.08: Ingres Database for Linux ingvalidpw Untrusted Library Path Vulnerability
iDefense Security Advisory 08.01.08 http://labs.idefense.com/intelligence/vulnerabilities/ Aug 01, 2008 I. BACKGROUND Ingres Database is a database server used in several Computer Associates' products. For example, CA Directory Service use thes Ingres Database server. More information can be foun...
iDefense Security Advisory 08.01.08: Ingres Database for Linux libbecompat Stack Based Buffer Overflow Vulnerability
iDefense Security Advisory 08.01.08 http://labs.idefense.com/intelligence/vulnerabilities/ Aug 01, 2008 I. BACKGROUND Ingres Database is a database server used in several Computer Associates' products. For example, CA Directory Service use thes Ingres Database server. More information can be foun...
Ingres用户认证非授权访问漏洞
BUGTRAQ ID: 26959 CVECAN ID: CVE-2007-6334 Ingres是很多CA产品默认所使用的数据库后端。 Windows平台上的Ingres数据库为之后连接的用户分配了与第一个连接用户相同的权限和身份,这允许远程攻击者获得非授权访问。仅在运行于Microsoft IIS Web服务器上且启用了集成Windows认证(IWA)选项的情况下才会出现这个漏洞。 Ingres Corporation Ingres Database 2.6 Ingres Corporation Ingres Database 2.5 厂商补丁: Ingres Corporation...
Design/Logic Flaw
Multiple "pointer overwrite" vulnerabilities in Ingres database server 2006 9.0.4, r3, 2.6, and 2.5, as used in multiple CA formerly Computer Associates products, allow remote attackers to execute arbitrary code by sending certain TCP data at different times to the Ingres Communications Server...
CVE-2007-3338
Multiple stack-based buffer overflows in Ingres database server 2006 9.0.4, r3, 2.6, and 2.5, as used in multiple CA Computer Associates products, allow remote attackers to execute arbitrary code via the 1 uuidfromchar or 2 duvegetargs functions...