CVE-2004-0977

2005-02-0900:00:00

ubuntu.com

2.1 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:L/AC:L/Au:N/C:N/I:P/A:N

0.0004 Low

EPSS

Percentile

5.1%

JSON

The make_oidjoins_check script in PostgreSQL 7.4.5 and earlier allows local
users to overwrite files via a symlink attack on temporary files.

OSVersionArchitecturePackageVersionFilename
ubuntu6.06noarchpostgresql< 7.5.16.1UNKNOWN
ubuntu6.10noarchpostgresql< 7.5.16.1UNKNOWN
ubuntu6.06noarchpostgresql-7.4< 7.4.12-3UNKNOWN
ubuntu6.10noarchpostgresql-7.4< 7.4.12-3UNKNOWN
ubuntu6.06noarchpostgresql-8.0< 8.0.7-2build1UNKNOWN
ubuntu6.06noarchpostgresql-8.1< 8.1.9-0ubuntu0.6.06UNKNOWN
ubuntu6.10noarchpostgresql-8.1< 8.1.9-0ubuntu0.6.10UNKNOWN
ubuntu7.04noarchpostgresql-8.1< 8.1.8-1ubuntu3UNKNOWN
ubuntu7.04noarchpostgresql-8.2< 8.2.4-0ubuntu0.7.04UNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	6.06	noarch	postgresql	< 7.5.16.1	UNKNOWN
ubuntu	6.10	noarch	postgresql	< 7.5.16.1	UNKNOWN
ubuntu	6.06	noarch	postgresql-7.4	< 7.4.12-3	UNKNOWN
ubuntu	6.10	noarch	postgresql-7.4	< 7.4.12-3	UNKNOWN
ubuntu	6.06	noarch	postgresql-8.0	< 8.0.7-2build1	UNKNOWN
ubuntu	6.06	noarch	postgresql-8.1	< 8.1.9-0ubuntu0.6.06	UNKNOWN
ubuntu	6.10	noarch	postgresql-8.1	< 8.1.9-0ubuntu0.6.10	UNKNOWN
ubuntu	7.04	noarch	postgresql-8.1	< 8.1.8-1ubuntu3	UNKNOWN
ubuntu	7.04	noarch	postgresql-8.2	< 8.2.4-0ubuntu0.7.04	UNKNOWN