mirror of
https://github.com/CVEProject/cvelist.git
synced 2025-07-30 18:04:30 +00:00
107 lines
3.5 KiB
JSON
107 lines
3.5 KiB
JSON
{
|
|
"CVE_data_meta": {
|
|
"ASSIGNER": "cve@mitre.org",
|
|
"ID": "CVE-2007-6334",
|
|
"STATE": "PUBLIC"
|
|
},
|
|
"affects": {
|
|
"vendor": {
|
|
"vendor_data": [
|
|
{
|
|
"product": {
|
|
"product_data": [
|
|
{
|
|
"product_name": "n/a",
|
|
"version": {
|
|
"version_data": [
|
|
{
|
|
"version_value": "n/a"
|
|
}
|
|
]
|
|
}
|
|
}
|
|
]
|
|
},
|
|
"vendor_name": "n/a"
|
|
}
|
|
]
|
|
}
|
|
},
|
|
"data_format": "MITRE",
|
|
"data_type": "CVE",
|
|
"data_version": "4.0",
|
|
"description": {
|
|
"description_data": [
|
|
{
|
|
"lang": "eng",
|
|
"value": "Ingres 2.5 and 2.6 on Windows, as used in multiple CA products and possibly other products, assigns the privileges and identity of users to be the same as the first user, which allows remote attackers to gain privileges."
|
|
}
|
|
]
|
|
},
|
|
"problemtype": {
|
|
"problemtype_data": [
|
|
{
|
|
"description": [
|
|
{
|
|
"lang": "eng",
|
|
"value": "n/a"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
},
|
|
"references": {
|
|
"reference_data": [
|
|
{
|
|
"name": "ADV-2007-4303",
|
|
"refsource": "VUPEN",
|
|
"url": "http://www.vupen.com/english/advisories/2007/4303"
|
|
},
|
|
{
|
|
"name": "1019134",
|
|
"refsource": "SECTRACK",
|
|
"url": "http://www.securitytracker.com/id?1019134"
|
|
},
|
|
{
|
|
"name": "39358",
|
|
"refsource": "OSVDB",
|
|
"url": "http://www.osvdb.org/39358"
|
|
},
|
|
{
|
|
"name": "http://www.ingres.com/support/security-alertDec17.php",
|
|
"refsource": "CONFIRM",
|
|
"url": "http://www.ingres.com/support/security-alertDec17.php"
|
|
},
|
|
{
|
|
"name": "28187",
|
|
"refsource": "SECUNIA",
|
|
"url": "http://secunia.com/advisories/28187"
|
|
},
|
|
{
|
|
"name": "26959",
|
|
"refsource": "BID",
|
|
"url": "http://www.securityfocus.com/bid/26959"
|
|
},
|
|
{
|
|
"name": "28183",
|
|
"refsource": "SECUNIA",
|
|
"url": "http://secunia.com/advisories/28183"
|
|
},
|
|
{
|
|
"name": "http://supportconnectw.ca.com/public/ingres/infodocs/ingresmswin-secnot.asp",
|
|
"refsource": "CONFIRM",
|
|
"url": "http://supportconnectw.ca.com/public/ingres/infodocs/ingresmswin-secnot.asp"
|
|
},
|
|
{
|
|
"name": "ADV-2007-4304",
|
|
"refsource": "VUPEN",
|
|
"url": "http://www.vupen.com/english/advisories/2007/4304"
|
|
},
|
|
{
|
|
"name": "20071221 [CAID 35970]: CA Products That Embed Ingres Authentication Vulnerability",
|
|
"refsource": "BUGTRAQ",
|
|
"url": "http://www.securityfocus.com/archive/1/485448/100/0/threaded"
|
|
}
|
|
]
|
|
}
|
|
} |