Detections
Analytics

CVE-2007-3334

critical

Description

Multiple heap-based buffer overflows in the (1) Communications Server (iigcc.exe) and (2) Data Access Server (iigcd.exe) components for Ingres Database Server 3.0.3, as used in CA (Computer Associates) products including eTrust Secure Content Manager r8 on Windows, allow remote attackers to execute arbitrary code via unknown vectors.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/35002

https://exchange.xforce.ibmcloud.com/vulnerabilities/34992

https://exchange.xforce.ibmcloud.com/vulnerabilities/34991

http://www.vupen.com/english/advisories/2007/2290

http://www.vupen.com/english/advisories/2007/2288

http://www.securitytracker.com/id?1018278

http://www.securityfocus.com/bid/24585

http://www.ca.com/us/securityadvisor/newsinfo/collateral.aspx?cid=145778

http://supportconnectw.ca.com/public/ca_common_docs/ingresvuln_letter.asp

http://secunia.com/advisories/25775

http://secunia.com/advisories/25756

http://osvdb.org/37488

http://osvdb.org/37487

http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=546

Details

Source: Mitre, NVD

Published: 2007-06-21

Updated: 2026-06-16

Risk Information

CVSS v2

Base Score: 10

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Severity: Critical

CVSS v3

Base Score: 9.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Severity: Critical

EPSS

EPSS: 0.10321