verifydb in Ingres 2.6, Ingres 2006 release 1 (aka 9.0.4), and Ingres 2006 release 2 (aka 9.1.0) on Linux and other Unix platforms sets the ownership or permissions of an iivdb.log file without verifying that it is the application's own log file, which allows local users to overwrite arbitrary files by creating a symlink with an iivdb.log filename.
Weaknesses in this category are related to the management of permissions, privileges, and other security features that are used to perform access control.
| Link | Tags |
|---|---|
| http://www.ingres.com/support/security-alert-080108.php | |
| http://www.vupen.com/english/advisories/2008/2292 | vdb entry |
| http://secunia.com/advisories/31398 | third party advisory |
| http://securitytracker.com/id?1020613 | vdb entry |
| http://www.vupen.com/english/advisories/2008/2313 | vdb entry |
| http://secunia.com/advisories/31357 | third party advisory vendor advisory |
| https://exchange.xforce.ibmcloud.com/vulnerabilities/44177 | vdb entry |
| http://www.securityfocus.com/archive/1/495177/100/0/threaded | mailing list |
| http://www.securityfocus.com/bid/30512 | vdb entry |
| https://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=181989 | |
| http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=731 | third party advisory |