CVE-2008-3357

Untrusted search path vulnerability in ingvalidpw in Ingres 2.6, Ingres 2006 release 1 (aka 9.0.4), and Ingres 2006 release 2 (aka 9.1.0) on Linux and HP-UX allows local users to gain privileges via a crafted shared library, related to a "pointer overwrite vulnerability."
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

AND
OR cpe:2.3:a:actian:ingres:2.6:*:*:*:*:*:*:*
cpe:2.3:a:actian:ingres:9.0.4:*:*:*:*:*:*:*
cpe:2.3:a:actian:ingres:9.1.0:*:*:*:*:*:*:*
OR cpe:2.3:o:hp:hp-ux:-:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*

Information

Published : 2008-08-05 12:41

Updated : 2020-09-28 08:14


NVD link : CVE-2008-3357

Mitre link : CVE-2008-3357


JSON object : View

CWE
CWE-426

Untrusted Search Path

Advertisement

dedicated server usa

Products Affected

actian

  • ingres

hp

  • hp-ux

linux

  • linux_kernel