PostgreSQL Multiple Security Vulnerabilities Network Vulnerability

Summary

PostgreSQL is prone to multiple security vulnerabilities, including a denial-of-service issue, a privilege-escalation issue, and an authentication- bypass issue. Attackers can exploit these issues to shut down affected servers, perform certain actions with elevated privileges, and bypass authentication mechanisms to perform unauthorized actions. Other attacks may also be possible.

Solution

Updates are available. Please see the references for more information.

References

http://www.postgresql.org/
http://www.postgresql.org/support/security
http://www.securityfocus.com/bid/36314
https://bugzilla.redhat.com/show_bug.cgi?id=522085#c1

Updated on 2017-03-28

Severity

Classification

CVE CVE-2009-3229, CVE-2009-3230, CVE-2009-3231

CVSS	Base Score: 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P

Related Vulnerabilities

Oracle MySQL Multiple Unspecified vulnerabilities - 01 May14 (Windows)
Oracle MySQL Multiple Unspecified vulnerabilities - 04 May14 (Windows)
Oracle MySQL Multiple Unspecified vulnerabilities-04 Feb15 (Windows)
Oracle Database Server Authentication Protocol Security Bypass Vulnerability
MariaDB Denial Of Service Vulnerability (Windows)

Take action and discover your vulnerabilities