Summary
PostgreSQL is prone to multiple security vulnerabilities, including a denial-of-service issue, a privilege-escalation issue, and an authentication- bypass issue.
Attackers can exploit these issues to shut down affected servers, perform certain actions with elevated privileges, and bypass authentication mechanisms to perform unauthorized actions. Other attacks may also be possible.
Solution
Updates are available. Please see the references for more information.
References
Severity
Classification
-
CVE CVE-2009-3229, CVE-2009-3230, CVE-2009-3231 -
CVSS Base Score: 6.8
AV:N/AC:M/Au:N/C:P/I:P/A:P
Related Vulnerabilities
- IBM DB2 XML Feature DoS and CREATE VARIABLE Security Bypass Vulnerabilities
- Oracle MySQL Multiple Unspecified vulnerabilities - 02 May14 (Windows)
- IBM DB2 DBADM Privilege Revocation Security Bypass Vulnerability
- MongoDB mongod Malformed X.509 Certificate Handling Remote DoS Vulnerability
- MySQL multiple Vulnerabilities