CVE-2007-3338

Multiple stack-based buffer overflows in Ingres database server 2006 9.0.4, r3, 2.6, and 2.5, as used in multiple CA (Computer Associates) products, allow remote attackers to execute arbitrary code via the (1) uuid_from_char or (2) duve_get_args functions.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:ingres:database_server:2.5:*:*:*:*:*:*:*
cpe:2.3:a:ingres:database_server:2.6:*:*:*:*:*:*:*
cpe:2.3:a:ingres:database_server:9.0.4:*:*:*:*:*:*:*
cpe:2.3:a:ingres:database_server:r3:*:*:*:*:*:*:*

History

No history.

Information

Published : 2007-06-22 18:30

Updated : 2024-02-28 11:01


NVD link : CVE-2007-3338

Mitre link : CVE-2007-3338

CVE.ORG link : CVE-2007-3338


JSON object : View

Products Affected

ingres

  • database_server
CWE
CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer