Lucene search

K

Veracode Vulnerability DatabaseVERACODE:23210

HistoryApr 10, 2020 - 12:19 a.m.

Privilege Escalation

2020-04-1000:19:40

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

10

0.004 Low

EPSS

Percentile

72.7%

postgresql is vulnerable to privilege escalation. The vulnerability exists as an authenticated attacker could use dblink to possibly escalate privileges on systems with “trust” or “ident” authentication configured. Please note that dblink functionality is not enabled by default, and can only by enabled by a database administrator on systems with the postgresql-contrib package installed.

CPENameOperatorVersion
postgresqleq8.1.9__1.el4s1.1
postgresqleq7.4.19__1.el4_6.1
postgresqleq8.1.8__1.el4s1.1
postgresqleq8.1.8__1.el5
postgresqleq8.1.4__1.el4s1.1
postgresqleq8.1.9__1.el5
postgresqleq8.1.11__1.el5_1.1
postgresqleq8.1.7__3.el4s1.1
postgresqleq8.2.4__6.el5s2
postgresqleq8.1.9__1.el4s1.1

Rows per page:

1-10 of 181

References

h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01420154

lists.opensuse.org/opensuse-security-announce/2008-02/msg00000.html

secunia.com/advisories/28359

secunia.com/advisories/28376

secunia.com/advisories/28437

secunia.com/advisories/28438

secunia.com/advisories/28445

secunia.com/advisories/28454

secunia.com/advisories/28455

secunia.com/advisories/28464

secunia.com/advisories/28477

secunia.com/advisories/28479

secunia.com/advisories/28679

secunia.com/advisories/28698

secunia.com/advisories/29638

security.gentoo.org/glsa/glsa-200801-15.xml

securitytracker.com/id?1019157

sunsolve.sun.com/search/document.do?assetkey=1-26-103197-1

sunsolve.sun.com/search/document.do?assetkey=1-66-200559-1

www.debian.org/security/2008/dsa-1460

www.debian.org/security/2008/dsa-1463

www.mandriva.com/security/advisories?name=MDVSA-2008:004

www.postgresql.org/about/news.905

www.redhat.com/security/updates/classification/#moderate

www.redhat.com/support/errata/RHSA-2008-0038.html

www.redhat.com/support/errata/RHSA-2008-0039.html

www.redhat.com/support/errata/RHSA-2008-0040.html

www.securityfocus.com/archive/1/485864/100/0/threaded

www.securityfocus.com/archive/1/486407/100/0/threaded

www.securityfocus.com/bid/27163

www.vupen.com/english/advisories/2008/0061

www.vupen.com/english/advisories/2008/0109

www.vupen.com/english/advisories/2008/1071/references

access.redhat.com/errata/RHSA-2008:0038

exchange.xforce.ibmcloud.com/vulnerabilities/39500

issues.rpath.com/browse/RPL-1768

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11127

usn.ubuntu.com/568-1/

www.redhat.com/archives/fedora-package-announce/2008-January/msg00397.html

www.redhat.com/archives/fedora-package-announce/2008-January/msg00469.html

0.004 Low

EPSS

Percentile

72.7%

Related for VERACODE:23210

postgresql1 nvd1 cvelist1 oraclelinux2 ubuntucve1 prion1 cve1 nessus19 openvas36 redhat3 centos2 securityvulns2 fedora2 freebsd1 suse1 osv2 gentoo1 debian2 ubuntu1