Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ingres ingres 2006 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-3356
verifydb in Ingres 2.6, Ingres 2006 release 1 (aka 9.0.4), and Ingres 2006 release 2 (aka 9.1.0) on Linux and other Unix platforms sets the ownership or permissions of an iivdb.log file without verifying that it is the application's own log file, which allows local users to ...
Ingres Ingres 2006
Ingres Ingres 2.6
NA
CVE-2008-3357
Untrusted search path vulnerability in ingvalidpw in Ingres 2.6, Ingres 2006 release 1 (aka 9.0.4), and Ingres 2006 release 2 (aka 9.1.0) on Linux and HP-UX allows local users to gain privileges via a crafted shared library, related to a "pointer overwrite vulnerability.&quo...
Actian Ingres 2.6
Actian Ingres 9.0.4
Actian Ingres 9.1.0
NA
CVE-2008-3389
Stack-based buffer overflow in the libbecompat library in Ingres 2.6, Ingres 2006 release 1 (aka 9.0.4), and Ingres 2006 release 2 (aka 9.1.0) on Linux and HP-UX allows local users to gain privileges by setting a long value of an environment variable before running (1) verifydb, ...
Ingres Ingres 2006
Ingres Ingres 2.6
NA
CVE-2007-3338
Multiple stack-based buffer overflows in Ingres database server 2006 9.0.4, r3, 2.6, and 2.5, as used in multiple CA (Computer Associates) products, allow remote malicious users to execute arbitrary code via the (1) uuid_from_char or (2) duve_get_args functions.
Ingres Database Server R3
Ingres Database Server 2.5
Ingres Database Server 2.6
Ingres Database Server 9.0.4
NA
CVE-2007-3336
Multiple "pointer overwrite" vulnerabilities in Ingres database server 2006 9.0.4, r3, 2.6, and 2.5, as used in multiple CA (formerly Computer Associates) products, allow remote malicious users to execute arbitrary code by sending certain TCP data at different times to ...
Ingres Database Server 9.0.4
Ingres Database Server R3
Ingres Database Server 2.5
Ingres Database Server 2.6
1 EDB exploit
NA
CVE-2007-3337
wakeup in Ingres database server 2006 9.0.4, r3, 2.6, and 2.5, as used in multiple CA (Computer Associates) products, allows local users to truncate arbitrary files via a symlink attack on the alarmwkp.def file.
Ingres Database Server 2.6
Ingres Database Server R3
Ingres Database Server 9.0.4
Ingres Database Server 2.5
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started