説明
Ingres 2.5 and 2.6 on Windows, as used in multiple CA products and possibly other products, assigns the privileges and identity of users to be the same as the first user, which allows remote attackers to gain privileges.
AI分析AIによる分析
影響を受ける製品
microsoftwindows_nt
ingresingres
2.5
ingresingres
2.6
参照
- http://secunia.com/advisories/28183PatchVendor Advisory
- http://secunia.com/advisories/28187PatchVendor Advisory
- http://supportconnectw.ca.com/public/ingres/infodocs/ingresmswin-secnot.asp
- http://www.ingres.com/support/security-alertDec17.php
- http://www.osvdb.org/39358
- http://www.securityfocus.com/archive/1/485448/100/0/threaded
- http://www.securityfocus.com/bid/26959Patch
- http://www.securitytracker.com/id?1019134
- http://www.vupen.com/english/advisories/2007/4303
- http://www.vupen.com/english/advisories/2007/4304
- http://secunia.com/advisories/28183PatchVendor Advisory
- http://secunia.com/advisories/28187PatchVendor Advisory
- http://supportconnectw.ca.com/public/ingres/infodocs/ingresmswin-secnot.asp
- http://www.ingres.com/support/security-alertDec17.php
- http://www.osvdb.org/39358
- http://www.securityfocus.com/archive/1/485448/100/0/threaded
- http://www.securityfocus.com/bid/26959Patch
- http://www.securitytracker.com/id?1019134
- http://www.vupen.com/english/advisories/2007/4303
- http://www.vupen.com/english/advisories/2007/4304