CVE-2007-3279

NONECVSS 0.0

0.0

PostgreSQL 8.1 and probably later versions, when the PL/pgSQL (plpgsql) language has been created, grants certain plpgsql privileges to the PUBLIC domain, which allows remote attackers to create and execute functions, as demonstrated by functions that perform local brute-force password guessing attacks, which may evade intrusion detection.

🔗 References (12)

cve@mitrehttp://osvdb.org/40900
cve@mitrehttp://www.leidecker.info/pgshell/Having_Fun_With_PostgreSQL.txt
cve@mitrehttp://www.mandriva.com/security/advisories?name=MDKSA-2007:188
cve@mitrehttp://www.portcullis.co.uk/uplds/whitepapers/Having_Fun_With_PostgreSQL.pdf
cve@mitrehttp://www.securityfocus.com/archive/1/471541/100/0/threaded
cve@mitrehttps://exchange.xforce.ibmcloud.com/vulnerabilities/35144
af854a3a-2127-422b-91ae-364da2661108http://osvdb.org/40900
af854a3a-2127-422b-91ae-364da2661108http://www.leidecker.info/pgshell/Having_Fun_With_PostgreSQL.txt
af854a3a-2127-422b-91ae-364da2661108http://www.mandriva.com/security/advisories?name=MDKSA-2007:188
af854a3a-2127-422b-91ae-364da2661108http://www.portcullis.co.uk/uplds/whitepapers/Having_Fun_With_PostgreSQL.pdf
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/archive/1/471541/100/0/threaded
af854a3a-2127-422b-91ae-364da2661108https://exchange.xforce.ibmcloud.com/vulnerabilities/35144

Is Your Infrastructure Affected by CVE-2007-3279?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2007-3279

📅 Published

🔄 Last Modified

🔗 References (12)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2007-3279?