Unrated severityNVD Advisory· Published Dec 20, 2007· Updated Apr 23, 2026

CVE-2007-6334

Description

Ingres 2.5 and 2.6 on Windows, as used in multiple CA products and possibly other products, assigns the privileges and identity of users to be the same as the first user, which allows remote attackers to gain privileges.

Affected products

Ingres/Ingres2 versions
cpe:2.3:a:ingres:ingres:2.5:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:ingres:ingres:2.5:*:*:*:*:*:*:*
- cpe:2.3:a:ingres:ingres:2.6:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

secunia.com/advisories/28183nvdPatchVendor Advisory
secunia.com/advisories/28187nvdPatchVendor Advisory
www.securityfocus.com/bid/26959nvdPatch
supportconnectw.ca.com/public/ingres/infodocs/ingresmswin-secnot.aspnvd
www.ingres.com/support/security-alertDec17.phpnvd
www.osvdb.org/39358nvd
www.securityfocus.com/archive/1/485448/100/0/threadednvd
www.securitytracker.com/idnvd
www.vupen.com/english/advisories/2007/4303nvd
www.vupen.com/english/advisories/2007/4304nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000