Lucene search
Ubuntu.comUB:CVE-2007-6601HistoryJan 09, 2008 - 12:00 a.m.
CVE-2007-6601
2008-01-0900:00:00
ubuntu.com
ubuntu.com
8
7.2 High
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
0.004 Low
EPSS
Percentile
72.7%
The DBLink module in PostgreSQL 8.2 before 8.2.6, 8.1 before 8.1.11, 8.0
before 8.0.15, 7.4 before 7.4.19, and 7.3 before 7.3.21, when local trust
or ident authentication is used, allows remote attackers to gain privileges
via unspecified vectors. NOTE: this issue exists because of an incomplete
fix for CVE-2007-3278.
Bugs
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| ubuntu | 6.06 | noarch | postgresql-8.1 | < 8.1.11-0ubuntu0.6.06.1 | UNKNOWN |
| ubuntu | 6.10 | noarch | postgresql-8.1 | < 8.1.11-0ubuntu0.6.10.1 | UNKNOWN |
| ubuntu | 7.04 | noarch | postgresql-8.2 | < 8.2.6-0ubuntu0.7.04.1 | UNKNOWN |
| ubuntu | 7.10 | noarch | postgresql-8.2 | < 8.2.6-0ubuntu0.7.10.1 | UNKNOWN |
| ubuntu | 8.04 | noarch | postgresql-8.2 | < 8.2.6-1 | UNKNOWN |
Related
cvelist
cvelist
CVE-2007-6601
2008-01-09 21:00:00
CVE-2007-3278
2007-06-19 21:00:00
nvd
nvd
CVE-2007-6601
2008-01-09 21:46:00
CVE-2007-3278
2007-06-19 21:30:00
prion
prion
Authentication flaw
2008-01-09 21:46:00
Sql injection
2007-06-19 21:30:00
cve
cve
CVE-2007-6601
2008-01-09 21:46:00
CVE-2007-3278
2007-06-19 21:30:00
redhat
redhat
(RHSA-2008:0039) Moderate: postgresql security update
2008-01-11 00:00:00
(RHSA-2008:0040) Moderate: postgresql security update
2008-02-01 00:00:00
(RHSA-2008:0038) Moderate: postgresql security update
2008-01-11 00:00:00
nessus
nessus
CentOS 3 : postgresql (CESA-2008:0039)
2008-01-14 00:00:00
RHEL 3 : postgresql (RHSA-2008:0039)
2008-01-14 00:00:00
Oracle Linux 3 : postgresql (ELSA-2008-0039)
2013-07-12 00:00:00
openvas
openvas
CentOS Update for rh-postgresql CESA-2008:0039 centos3 i386
2009-02-27 00:00:00
CentOS Update for rh-postgresql CESA-2008:0039 centos3 x86_64
2009-02-27 00:00:00
RedHat Update for postgresql RHSA-2008:0039-01
2009-03-06 00:00:00
centos
centos
rh security update
2008-01-11 14:31:56
postgresql security update
2008-01-11 15:27:05
veracode
veracode
Privilege Escalation
2020-04-10 00:19:40
Privilege Escalation
2020-04-10 00:19:39
ubuntucve
ubuntucve
CVE-2007-3278
2007-06-19 00:00:00
postgresql
postgresql
Vulnerability in contrib module (CVE-2007-6601)
2008-01-09 21:46:00
osv
osv
postgresql-8.1 - several
2008-01-13 00:00:00
postgresql-7.4 - several
2008-01-14 00:00:00
gentoo
gentoo
PostgreSQL: Multiple vulnerabilities
2008-01-29 00:00:00
debian
debian
oraclelinux
oraclelinux
Moderate: postgresql security update
2008-01-11 00:00:00
Moderate: postgresql security update
2008-01-11 00:00:00
securityvulns
securityvulns
PostgreSQL 2007-01-07 Cumulative Security Release
2008-01-08 00:00:00
PostgreSQL dblink library multiple security vulnerabilities
2007-09-26 00:00:00
ubuntu
ubuntu
PostgreSQL vulnerabilities
2008-01-14 00:00:00
fedora
fedora
[SECURITY] Fedora 8 Update: postgresql-8.2.6-1.fc8
2008-01-11 22:14:38
[SECURITY] Fedora 7 Update: postgresql-8.2.6-1.fc7
2008-01-11 22:24:42
suse
suse
remote code execution in postgresql
2008-02-06 10:24:49
freebsd
freebsd
postgresql -- multiple vulnerabilities
2008-01-06 00:00:00
7.2 High
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
0.004 Low
EPSS
Percentile
72.7%
Related for UB:CVE-2007-6601