CVE-2007-6334 | Vulnerability Database | Aqua Security

Ingres 2.5 and 2.6 on Windows, as used in multiple CA products and possibly other products, assigns the privileges and identity of users to be the same as the first user, which allows remote attackers to gain privileges.

Affected Software

Name	Vendor	Start Version	End Version
Windows_nt	Microsoft	*	*

References

http://secunia.com/advisories/28183
http://secunia.com/advisories/28187
http://supportconnectw.ca.com/public/ingres/infodocs/ingresmswin-secnot.asp
http://www.ingres.com/support/security-alertDec17.php
http://www.osvdb.org/39358
http://www.securityfocus.com/archive/1/485448/100/0/threaded
http://www.securityfocus.com/bid/26959
http://www.securitytracker.com/id?1019134
http://www.vupen.com/english/advisories/2007/4303
http://www.vupen.com/english/advisories/2007/4304
http://secunia.com/advisories/28183
http://secunia.com/advisories/28187
http://supportconnectw.ca.com/public/ingres/infodocs/ingresmswin-secnot.asp
http://www.ingres.com/support/security-alertDec17.php
http://www.osvdb.org/39358
http://www.securityfocus.com/archive/1/485448/100/0/threaded
http://www.securityfocus.com/bid/26959
http://www.securitytracker.com/id?1019134
http://www.vupen.com/english/advisories/2007/4303
http://www.vupen.com/english/advisories/2007/4304

NVD	https://nvd.nist.gov/vuln/detail/CVE-2007-6334
CWE	https://cwe.mitre.org/data/definitions/264.html