Описание
Untrusted search path vulnerability in ingvalidpw in Ingres 2.6, Ingres 2006 release 1 (aka 9.0.4), and Ingres 2006 release 2 (aka 9.1.0) on Linux and HP-UX allows local users to gain privileges via a crafted shared library, related to a "pointer overwrite vulnerability."
Ссылки
- Broken Link
- Third Party Advisory
- Third Party Advisory
- Third Party AdvisoryVDB Entry
- Vendor Advisory
- Third Party AdvisoryVDB Entry
- Third Party AdvisoryVDB Entry
- Third Party Advisory
- Third Party Advisory
- Third Party AdvisoryVDB Entry
- Broken Link
- Broken Link
- Third Party Advisory
- Third Party Advisory
- Third Party AdvisoryVDB Entry
- Vendor Advisory
- Third Party AdvisoryVDB Entry
- Third Party AdvisoryVDB Entry
- Third Party Advisory
- Third Party Advisory
Уязвимые конфигурации
Конфигурация 1
Одновременно
Одно из
cpe:2.3:a:actian:ingres:2.6:*:*:*:*:*:*:*
cpe:2.3:a:actian:ingres:9.0.4:*:*:*:*:*:*:*
cpe:2.3:a:actian:ingres:9.1.0:*:*:*:*:*:*:*
Одно из
cpe:2.3:o:hp:hp-ux:-:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*
EPSS
Процентиль: 22%
0.00071
Низкий
7.2 High
CVSS2
Дефекты
CWE-426
Связанные уязвимости
github
почти 4 года назад
Untrusted search path vulnerability in ingvalidpw in Ingres 2.6, Ingres 2006 release 1 (aka 9.0.4), and Ingres 2006 release 2 (aka 9.1.0) on Linux and HP-UX allows local users to gain privileges via a crafted shared library, related to a "pointer overwrite vulnerability."
fstec
больше 17 лет назад
Уязвимость утилиты ingvalidpw системы управления базами данных Ingres, позволяющая нарушителю выполнить произвольный код с привилегиями root
EPSS
Процентиль: 22%
0.00071
Низкий
7.2 High
CVSS2
Дефекты
CWE-426