Bugsalert.com
Security News about Viruses, Spyware,
Trojans, Malware, XSS attacks.
Home

Mandriva: Updated postgresql packages fix denial of service
BugsAlert Home > Mandriva: Updated postgresql packages fix denial of service
 
 

LinuxSecurity.com: Index Functions Privilege Escalation (CVE-2007-6600): as a unique feature, PostgreSQL allows users to create indexes on the results of user-defined functions, known as expression indexes. This provided two vulnerabilities to privilege escalation: (1) index functions were executed as the superuser and not the table owner during VACUUM and ANALYZE, and (2) that SET ROLE and SET SESSION AUTHORIZATION were




Original Source: http://www.linuxsecurity.com/content/view/133074?rdf

Learn more about Mandriva: Updated postgresql packages fix denial of service
 

Related Items
      Wireshark Multiple Denial of Service Vulnerabilities

      FrSIRT - Slackware Security Update Fixes Thunderbird Multiple Vulnerabilities

      Bugtraq: Re: Uber Uploader <= 5.3.6 Remote File Upload Vulnerability

      FrSIRT - Microsoft Internet Explorer Printing Cross-Zone Scripting Vulnerability

      Trojan.BAT.FormatAll.d

      Debian update for exiv2

      Sun Solaris Firefox / Thunderbird Multiple Vulnerabilities

 
© 2007 BugsAlert.com Original template by Arcsin Hosted By 1and1


Pixel