VYPR
Unrated severityNVD Advisory· Published Aug 5, 2008· Updated Jun 16, 2026

CVE-2008-3357

CVE-2008-3357

Description

Untrusted search path vulnerability in ingvalidpw in Ingres 2.6, Ingres 2006 release 1 (aka 9.0.4), and Ingres 2006 release 2 (aka 9.1.0) on Linux and HP-UX allows local users to gain privileges via a crafted shared library, related to a "pointer overwrite vulnerability."

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

5
  • Actian/Ingres4 versions
    cpe:2.3:a:actian:ingres:2.6:*:*:*:*:*:*:*+ 3 more
    • cpe:2.3:a:actian:ingres:2.6:*:*:*:*:*:*:*
    • cpe:2.3:a:actian:ingres:9.0.4:*:*:*:*:*:*:*
    • cpe:2.3:a:actian:ingres:9.1.0:*:*:*:*:*:*:*
    • (no CPE)
  • Actian/ingvalidpwllm-create

Patches

Vulnerability mechanics

References

11

News mentions

0

No linked articles in our index yet.