CVE-2007-6334
NONEIngres 2.5 and 2.6 on Windows, as used in multiple CA products and possibly other products, assigns the privileges and identity of users to be the same as the first user, which allows remote attackers
Published: 12/20/2007Updated: 4/9/2025
Description
Ingres 2.5 and 2.6 on Windows, as used in multiple CA products and possibly other products, assigns the privileges and identity of users to be the same as the first user, which allows remote attackers to gain privileges.
AI AnalysisPowered by AI
Affected Products
microsoftwindows_nt
ingresingres
2.5
ingresingres
2.6
References
- http://secunia.com/advisories/28183PatchVendor Advisory
- http://secunia.com/advisories/28187PatchVendor Advisory
- http://supportconnectw.ca.com/public/ingres/infodocs/ingresmswin-secnot.asp
- http://www.ingres.com/support/security-alertDec17.php
- http://www.osvdb.org/39358
- http://www.securityfocus.com/archive/1/485448/100/0/threaded
- http://www.securityfocus.com/bid/26959Patch
- http://www.securitytracker.com/id?1019134
- http://www.vupen.com/english/advisories/2007/4303
- http://www.vupen.com/english/advisories/2007/4304
- http://secunia.com/advisories/28183PatchVendor Advisory
- http://secunia.com/advisories/28187PatchVendor Advisory
- http://supportconnectw.ca.com/public/ingres/infodocs/ingresmswin-secnot.asp
- http://www.ingres.com/support/security-alertDec17.php
- http://www.osvdb.org/39358
- http://www.securityfocus.com/archive/1/485448/100/0/threaded
- http://www.securityfocus.com/bid/26959Patch
- http://www.securitytracker.com/id?1019134
- http://www.vupen.com/english/advisories/2007/4303
- http://www.vupen.com/english/advisories/2007/4304