Download
| Alert*
oval:org.mitre.oval:def:7828
Several vulnerabilities have been discovered in PostgreSQL, an SQL database system. The Common Vulnerabilities and Exposures project identifies the following problems: Authenticated users can shut down the backend server by re-LOAD-ing libraries in $libdir/plugins, if any libraries are present there ... oval:org.secpod.oval:def:600484 Several vulnerabilities have been discovered in PostgreSQL, an SQL database system. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2009-3229 Authenticated users can shut down the backend server by re-LOAD-ing libraries in $libdir/plugins, if any libraries are ... oval:org.secpod.oval:def:33762 The host is installed with PostgreSQL 8.3 before 8.3.8 or 8.2 before 8.2.14 and is prone to a security bypass vulnerability. A flaw is present in the application, which fails to properly handle an empty password. Successful exploitation allows remote attackers to bypass authentication. oval:org.secpod.oval:def:300843 The core server component in PostgreSQL 8.4 before 8.4.1, 8.3 before 8.3.8, and 8.2 before 8.2.14 allows remote authenticated users to cause a denial of service by re-LOAD-ing libraries from a certain plugins directory . The core server component in PostgreSQL 8.4 before 8.4.1, 8.3 before 8.3.8, 8. ... oval:org.secpod.oval:def:700403 It was discovered that PostgreSQL could be made to unload and reload an already loaded module by using the LOAD command. A remote authenticated attacker could exploit this to cause a denial of service. This issue did not affect Ubuntu 6.06 LTS. Due to an incomplete fix for CVE-2007-6600, RESET ROLE ... |