Computer Security
[EN] securityvulns.ru no-pyccku


Ingres database server multiple security vulnerabilities
updated since 04.08.2008
Published:07.08.2008
Source:
SecurityVulns ID:9198
Type:local
Threat Level:
5/10
Description:Weak file permissions, insecure shared library loading, buffer overflow in different utilities.
Affected:INGRES : Ingres Database 2006
CVE:CVE-2008-3389 (Stack-based buffer overflow in the libbecompat library in Ingres 2.6, Ingres 2006 release 1 (aka 9.0.4), and Ingres 2006 release 2 (aka 9.1.0) on Linux and HP-UX allows local users to gain privileges by setting a long value of an environment variable before running (1) verifydb, (2) iimerge, or (3) csreport.)
 CVE-2008-3357 (Untrusted search path vulnerability in ingvalidpw in Ingres 2.6, Ingres 2006 release 1 (aka 9.0.4), and Ingres 2006 release 2 (aka 9.1.0) on Linux and HP-UX allows local users to gain privileges via a crafted shared library, related to a "pointer overwrite vulnerability.")
 CVE-2008-3356 (verifydb in Ingres 2.6, Ingres 2006 release 1 (aka 9.0.4), and Ingres 2006 release 2 (aka 9.1.0) on Linux and other Unix platforms sets the ownership or permissions of an iivdb.log file without verifying that it is the application's own log file, which allows local users to overwrite arbitrary files by creating a symlink with an iivdb.log filename.)
Original documentdocumentCA, CA Products That Embed Ingres Multiple Vulnerabilities (07.08.2008)
 documentIDEFENSE, iDefense Security Advisory 08.01.08: Ingres Database for Linux ingvalidpw Untrusted Library Path Vulnerability (04.08.2008)
 documentIDEFENSE, iDefense Security Advisory 08.01.08: Ingres Database for Linux libbecompat Stack Based Buffer Overflow Vulnerability (04.08.2008)
 documentIDEFENSE, iDefense Security Advisory 08.01.08: Ingres Database for Linux verifydb Insecure File Permissions Modification Vulnerability (04.08.2008)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod