CVE-2007-3338
CVE-2007-3338
Multiple stack-based buffer overflows in Ingres database server 2006 9.0.4, r3, 2.6, and 2.5, as used in multiple CA (Computer Associates) products, allow remote attackers to execute arbitrary code via the (1) uuid_from_char or (2) duve_get_args functions.
Affected products
n/a · n/aWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://osvdb.org/37483http://secunia.com/advisories/25756http://secunia.com/advisories/25775https://exchange.xforce.ibmcloud.com/vulnerabilities/34995https://exchange.xforce.ibmcloud.com/vulnerabilities/34998http://supportconnectw.ca.com/public/ca_common_docs/ingresvuln_letter.asphttp://www.ca.com/us/securityadvisor/newsinfo/collateral.aspx?cid=145778http://www.ngssoftware.com/advisories/high-risk-vulnerability-in-ingres-stack-overflow/http://www.ngssoftware.com/advisories/medium-risk-vulnerability-in-ingres-stack-overflow/http://www.securityfocus.com/archive/1/472194/100/0/threadedhttp://www.securityfocus.com/archive/1/472197/100/0/threadedhttp://www.securityfocus.com/bid/24585