Vulnerabilities > Intersystems > Cache Database > 5

DATE	CVE	VULNERABILITY TITLE	RISK
2004-12-31	CVE-2004-2684	Local Security vulnerability in Intersystems Cache Database 5 Unspecified vulnerability in the %template package in InterSystems Cache' 5.0 allows attackers to access certain files on a server, including (1) cache.key and (2) cache.dat, related to .csp files under (a) Dev\studio\templates and (b) Devuser\studio\templates. local low complexity intersystems	2.1
2003-12-31	CVE-2003-1333	Remote Security vulnerability in Cache Database Unspecified vulnerability in the Cache' Server Page (CSP) implementation in InterSystems Cache' 4.0.3 through 5.0.5 allows remote attackers to "gain complete control" of a server. network low complexity intersystems critical	10.0
2003-08-07	CVE-2003-0498	Code Injection vulnerability in Intersystems Cache Database 5 Caché Database 5.x installs the /cachesys/csp directory with insecure permissions, which allows local users to execute arbitrary code by adding server-side scripts that are executed with root privileges. local low complexity intersystems CWE-94	7.2
2003-08-07	CVE-2003-0497	Permissions, Privileges, and Access Controls vulnerability in Intersystems Cache Database 5 Caché Database 5.x installs /cachesys/bin/cache with world-writable permissions, which allows local users to gain privileges by modifying cache and executing it via cuxs. local low complexity intersystems CWE-264	7.2

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.