製品・ソフトウェアに関する情報

JVN脆弱性詳細

Linux 上などの Ingres におけるスタックベースのバッファオーバーフローの脆弱性

Title	Linux 上などの Ingres におけるスタックベースのバッファオーバーフローの脆弱性
Summary	Linux および HP-UX 上の Ingres の libbecompat ライブラリには、スタックベースのバッファオーバーフローの脆弱性が存在します。
Possible impacts	ローカルユーザにより、(1) verifydb、(2) iimerge、または (3) csreport の実行前に環境変数の過度に長い値を設定されることで、権限を取得される可能性があります。
Solution	ベンダより正式な対策が公開されています。ベンダ情報を参照して適切な対策を実施してください。
Publication Date	Aug. 1, 2008, midnight
Registration Date	Sept. 25, 2012, 5:17 p.m.
Last Update	Sept. 25, 2012, 5:17 p.m.

Affected System

ingres

ingres 2.6、2006 release 1、および 2006 release 2

CVE (情報セキュリティ共通脆弱性識別子)

No	Name	URL
Common Vulnerabilities and Exposures (CVE)
1	CVE-2008-3389	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3389
National Vulnerability Database (NVD)
2	CVE-2008-3389	http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-3389

CWE (共通脆弱性タイプ一覧)

No	Name	URL
JVNDB
1	CWE-119	https://jvndb.jvn.jp/ja/cwe/CWE-119.html

ベンダー情報

No	Name	URL
ingres
1	contentID=181989	https://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=181989

Change Log

No	Changed Details	Date of change
0	[2012年09月25日] 掲載	Feb. 17, 2018, 10:37 a.m.

NVD Vulnerability Information

CVE-2008-3389

Summary	Stack-based buffer overflow in the libbecompat library in Ingres 2.6, Ingres 2006 release 1 (aka 9.0.4), and Ingres 2006 release 2 (aka 9.1.0) on Linux and HP-UX allows local users to gain privileges by setting a long value of an environment variable before running (1) verifydb, (2) iimerge, or (3) csreport.
Summary	"Exploitation of this vulnerability allows an attacker to execute arbitrary code with the privileges of the "ingres" user. By itself, this vulnerability does not have very serious consequences. However, when combined with the library loading vulnerability, it allows an attacker to execute arbitrary code with root privileges. " (iDefense)
Summary	"Fixes are available for the current release of Ingres 2006 release 2 (9.1.0), for Ingres 2006 release 1 (9.0.4), and for Ingres 2.6 versions on their respective platforms. The security fixes are available and can be quickly applied with little to no anticipated impact to systems. Ingres customers with a current support contract can review the following knowledge base document for information on downloading the available fixes: http://servicedesk.ingres.com/CAisd/pdmweb.ingres?OP=SHOW_DETAIL+PERSID=KD:416012+HTMPL=kt_document_view.htmpl (ingres.com)
Publication Date	Aug. 6, 2008, 4:41 a.m.
Registration Date	Jan. 29, 2021, 1:40 p.m.
Last Update	Oct. 12, 2018, 5:48 a.m.

Affected software configurations

Related information, measures and tools

No	URL	refsource	タグ
1	http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=732	IDEFENSE	Broken Link
2	http://secunia.com/advisories/31357	SECUNIA	Third Party Advisory
3	http://secunia.com/advisories/31398	SECUNIA	Third Party Advisory
4	http://securitytracker.com/id?1020615	SECTRACK	Third Party Advisory VDB Entry
5	http://www.ingres.com/support/security-alert-080108.php	CONFIRM	Broken Link
6	http://www.securityfocus.com/archive/1/495177/100/0/threaded	BUGTRAQ
7	http://www.securityfocus.com/bid/30512	BID	Third Party Advisory VDB Entry
8	http://www.vupen.com/english/advisories/2008/2292	VUPEN	Third Party Advisory
9	http://www.vupen.com/english/advisories/2008/2313	VUPEN	Third Party Advisory
10	https://exchange.xforce.ibmcloud.com/vulnerabilities/44179	XF	Third Party Advisory VDB Entry
11	https://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=181989	CONFIRM	Broken Link

Common Vulnerabilities List

No	CWE	Name	URL
1	CWE-119	バッファエラー	https://cwe.mitre.org/data/definitions/118.html