Vulnerabilities > Intersystems > Cache Database > High
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2003-08-07 | CVE-2003-0498 | Code Injection vulnerability in Intersystems Cache Database 5 Caché Database 5.x installs the /cachesys/csp directory with insecure permissions, which allows local users to execute arbitrary code by adding server-side scripts that are executed with root privileges. | 7.2 |
2003-08-07 | CVE-2003-0497 | Permissions, Privileges, and Access Controls vulnerability in Intersystems Cache Database 5 Caché Database 5.x installs /cachesys/bin/cache with world-writable permissions, which allows local users to gain privileges by modifying cache and executing it via cuxs. | 7.2 |