Cache Database Server Redirection Vulnerability

medium Nessus Network Monitor Plugin ID 4190

Synopsis

The remote host is vulnerable to unspecified remote attack vectors.

Description

The remote host is running the Cache database server.
This version of Cache is reported to be prone to a flaw in the way that it handles redirection. While the details of the flaw are unknown, it is alleged that an attacker can modify data within the database without proper authorization. Successful exploitation would lead to the loss of data integrity.

Solution

Upgrade to version 2007.1.0.369.0, 2007.1.1.420.0 or higher.

See Also

http://www.intersystems.com/cache/index.html

Plugin Details

Severity: Medium

ID: 4190

Family: Database

Published: 8/26/2007

Updated: 3/6/2019

Risk Information

CVSS v2

Risk Factor: Low

Base Score: 3.3

Temporal Score: 2.7

Vector: CVSS2#AV:A/AC:L/Au:N/C:N/I:P/A:N

CVSS v3

Risk Factor: Medium

Base Score: 4.3

Temporal Score: 4

Vector: CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

Temporal Vector: CVSS:3.0/E:F/RL:O/RC:C

Reference Information

BID: 25408