Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ingres ingres 2.6 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-3356
verifydb in Ingres 2.6, Ingres 2006 release 1 (aka 9.0.4), and Ingres 2006 release 2 (aka 9.1.0) on Linux and other Unix platforms sets the ownership or permissions of an iivdb.log file without verifying that it is the application's own log file, which allows local users to ...
Ingres Ingres 2006
Ingres Ingres 2.6
NA
CVE-2008-3389
Stack-based buffer overflow in the libbecompat library in Ingres 2.6, Ingres 2006 release 1 (aka 9.0.4), and Ingres 2006 release 2 (aka 9.1.0) on Linux and HP-UX allows local users to gain privileges by setting a long value of an environment variable before running (1) verifydb, ...
Ingres Ingres 2006
Ingres Ingres 2.6
NA
CVE-2008-3357
Untrusted search path vulnerability in ingvalidpw in Ingres 2.6, Ingres 2006 release 1 (aka 9.0.4), and Ingres 2006 release 2 (aka 9.1.0) on Linux and HP-UX allows local users to gain privileges via a crafted shared library, related to a "pointer overwrite vulnerability.&quo...
Actian Ingres 2.6
Actian Ingres 9.0.4
Actian Ingres 9.1.0
NA
CVE-2007-6334
Ingres 2.5 and 2.6 on Windows, as used in multiple CA products and possibly other products, assigns the privileges and identity of users to be the same as the first user, which allows remote malicious users to gain privileges.
Ingres Ingres 2.5
Ingres Ingres 2.6
NA
CVE-2007-3336
Multiple "pointer overwrite" vulnerabilities in Ingres database server 2006 9.0.4, r3, 2.6, and 2.5, as used in multiple CA (formerly Computer Associates) products, allow remote malicious users to execute arbitrary code by sending certain TCP data at different times to ...
Ingres Database Server 9.0.4
Ingres Database Server R3
Ingres Database Server 2.5
Ingres Database Server 2.6
1 EDB exploit
NA
CVE-2007-3338
Multiple stack-based buffer overflows in Ingres database server 2006 9.0.4, r3, 2.6, and 2.5, as used in multiple CA (Computer Associates) products, allow remote malicious users to execute arbitrary code via the (1) uuid_from_char or (2) duve_get_args functions.
Ingres Database Server R3
Ingres Database Server 2.5
Ingres Database Server 2.6
Ingres Database Server 9.0.4
NA
CVE-2007-3337
wakeup in Ingres database server 2006 9.0.4, r3, 2.6, and 2.5, as used in multiple CA (Computer Associates) products, allows local users to truncate arbitrary files via a symlink attack on the alarmwkp.def file.
Ingres Database Server 2.6
Ingres Database Server R3
Ingres Database Server 9.0.4
Ingres Database Server 2.5
NA
CVE-2007-3334
Multiple heap-based buffer overflows in the (1) Communications Server (iigcc.exe) and (2) Data Access Server (iigcd.exe) components for Ingres Database Server 3.0.3, as used in CA (Computer Associates) products including eTrust Secure Content Manager r8 on Windows, allow remote m...
Ca Etrust Secure Content Manager 8.0
Ingres Database Server 3.0.3
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started