Signature Detail
This site is deprecated. Please CLICK HERE for latest updates
Short Name |
APP:INGRES:DB-COMP-BO |
|---|---|
Severity |
Major |
Recommended |
No |
Recommended Action |
Drop |
Category |
APP |
Keywords |
Ingres Database Communications Server Component Heap Buffer Overflow |
Release Date |
2015/06/12 |
Update Number |
2504 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+ |
APP: Ingres Database Communications Server Component Heap Buffer Overflow
A heap buffer overflow vulnerability exists in Ingres Database Communications Server. A successful attack can lead to arbitrary code execution.
Extended Description
Multiple heap-based buffer overflows in the (1) Communications Server (iigcc.exe) and (2) Data Access Server (iigcd.exe) components for Ingres Database Server 3.0.3, as used in CA (Computer Associates) products including eTrust Secure Content Manager r8 on Windows, allow remote attackers to execute arbitrary code via unknown vectors.
Affected Products
- Ca etrust_secure_content_manager 8.0
- Ingres database_server 3.0.3
References
- CVE: CVE-2007-3334