Description
The DBLink module in PostgreSQL 8.2 before 8.2.6, 8.1 before 8.1.11, 8.0 before 8.0.15, 7.4 before 7.4.19, and 7.3 before 7.3.21, when local trust or ident authentication is used, allows remote attackers to gain privileges via unspecified vectors. NOTE: this issue exists because of an incomplete fix for CVE-2007-3278.
Remediation
References
Related Vulnerabilities
MySQL CVE-2024-21171 Vulnerability (CVE-2024-21171)
PostgreSQL Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-0866)
MySQL CVE-2024-20969 Vulnerability (CVE-2024-20969)
SharePoint Authentication Bypass by Spoofing Vulnerability (CVE-2021-42320)
PrestaShop Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2019-19594)