PostgreSQL Multiple Security Vulnerabilities Network Vulnerability

Summary

PostgreSQL is prone to multiple security vulnerabilities, including a denial-of-service issue, a privilege-escalation issue, and an authentication- bypass issue. Attackers can exploit these issues to shut down affected servers, perform certain actions with elevated privileges, and bypass authentication mechanisms to perform unauthorized actions. Other attacks may also be possible.

Solution

Updates are available. Please see the references for more information.

References

http://www.postgresql.org/
http://www.postgresql.org/support/security
http://www.securityfocus.com/bid/36314
https://bugzilla.redhat.com/show_bug.cgi?id=522085#c1

Updated on 2017-03-28

Severity

Classification

CVE CVE-2009-3229, CVE-2009-3230, CVE-2009-3231

CVSS	Base Score: 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P

Related Vulnerabilities

IBM DB2 Multiple Security Bypass Vulnerabilities (May-11)
IBM DB2 REPEAT Buffer Overflow and TLS Renegotiation Vulnerabilities (Win)
Oracle MySQL Multiple Unspecified vulnerabilities - 01 May14 (Windows)
Oracle MySQL Prior to 5.1.51 Multiple Denial Of Service Vulnerabilities
PostgreSQL PL/Perl and PL/Tcl Local Privilege Escalation Vulnerability

Take action and discover your vulnerabilities