CVE-2007-6600 (PostgreSQL) |
|
| BugsAlert Home > CVE-2007-6600 (PostgreSQL) | |
|
PostgreSQL 8.2 before 8.2.6, 8.1 before 8.1.11, 8.0 before 8.0.15, 7.4 before 7.4.19, and 7.3 before 7.3.21 uses superuser privileges instead of table owner privileges for (1) VACUUM and (2) ANALYZE operations within index functions, and supports (3) SET ROLE and (4) SET SESSION AUTHORIZATION within index functions, which allows remote authenticated users to gain privileges. Original Source: http://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-6600 Learn more about CVE-2007-6600 (PostgreSQL) |
|
| Tags: cve-2007-6600 postgresql | |
Related Items |
|
|
Vuln: common solutions csphonebook 'index.php' Cross Site Scripting Vulnerability
|
|
|
CVE-2008-3988 (e-business_suite)
|
|
|
CVE-2008-1940 (grsecurity Kernel Patch)
|
|
|
wwwstats "link" Script Insertion Vulnerability
|
|
|
CVE-2008-2614 (oracle_http_server_component, Oracle Application Server)
|
|
|
CVE-2008-5078 (escript)
|
|
|
Microsoft Windows Media Products Two Vulnerabilities
|
|
