Vulnerabilities > Intersystems > Cache Database > 5
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2004-12-31 | CVE-2004-2684 | Local Security vulnerability in Intersystems Cache Database 5 Unspecified vulnerability in the %template package in InterSystems Cache' 5.0 allows attackers to access certain files on a server, including (1) cache.key and (2) cache.dat, related to .csp files under (a) Dev\studio\templates and (b) Devuser\studio\templates. | 2.1 |
2003-12-31 | CVE-2003-1333 | Remote Security vulnerability in Cache Database Unspecified vulnerability in the Cache' Server Page (CSP) implementation in InterSystems Cache' 4.0.3 through 5.0.5 allows remote attackers to "gain complete control" of a server. | 10.0 |
2003-08-07 | CVE-2003-0498 | Code Injection vulnerability in Intersystems Cache Database 5 Caché Database 5.x installs the /cachesys/csp directory with insecure permissions, which allows local users to execute arbitrary code by adding server-side scripts that are executed with root privileges. | 7.2 |
2003-08-07 | CVE-2003-0497 | Permissions, Privileges, and Access Controls vulnerability in Intersystems Cache Database 5 Caché Database 5.x installs /cachesys/bin/cache with world-writable permissions, which allows local users to gain privileges by modifying cache and executing it via cuxs. | 7.2 |